** Description changed: - [sctp: sk_ack_backlog wrap-around problem] DOS + The sctp_association_free function in net/sctp/associola.c in the Linux + kernel before 3.15.2 does not properly manage a certain backlog value, + which allows remote attackers to cause a denial of service (socket + outage) via a crafted SCTP packet. Break-Fix: de76e695a5ce19c121ba7e246b45f258be678a75 d3217b15a19a4779c39b212358a5c71d725822ee
-- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1336135 Title: CVE-2014-4667 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1336135/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs