CVE-2010-3705
CVSS v2.0
8.3 (High)
EPSS
0.65 % (80th)
Affected Products
4
Advisories
13
The sctp_auth_asoc_get_hmac function in net/sctp/auth.c in the Linux kernel before 2.6.36 does not properly validate the hmac_ids array of an SCTP peer, which allows remote attackers to cause a denial of service (memory corruption and panic) via a crafted value in the last element of this array.
Weaknesses
- CWE-400
- Uncontrolled Resource Consumption
- CVE Status
- PUBLISHED
- CNA
- Red Hat, Inc.
- Published Date
-
2010-11-26 20:00:02
(14 years ago) - Updated Date
-
2023-02-13 04:25:51
(19 months ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
|
Configuration #2
|
Configuration #3
|
Configuration #4
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...