← back
CVE-2006-2934

CVE-2006-2934

EPSS 5.1%
SCTP conntrack (ip_conntrack_proto_sctp.c) in netfilter for Linux kernel 2.6.17 before 2.6.17.3 and 2.6.16 before 2.6.16.23 allows remote attackers to cause a denial of service (crash) via a packet without any chunks, which causes a variable to contain an invalid value that is later used to dereference a pointer.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=197387http://secunia.com/advisories/20917http://secunia.com/advisories/20986http://secunia.com/advisories/21179http://secunia.com/advisories/21298http://secunia.com/advisories/21465http://secunia.com/advisories/21498http://secunia.com/advisories/21614http://secunia.com/advisories/21934http://secunia.com/advisories/22417https://issues.rpath.com/browse/RPL-488https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10932