Linux Kernel Multiple SCTP Remote Denial of Service Vulnerabilities

Linux Kernel Multiple SCTP Remote Denial of Service Vulnerabilities

The Linux kernel SCTP module is susceptible to remote denial-of-service vulnerabilities. These issues are triggered when the kernel handles unexpected SCTP packets.

These issues allow remote attackers to trigger kernel panics, denying further service to legitimate users.

Note that a valid SCTP endpoint must be listening.

The Linux kernel version 2.6.16 is vulnerable to these issues; prior versions may also be affected.