CVE-2015-5283
CVSS v2.0
4.7 (Medium)
EPSS
0.04 % (11th)
Affected Products
1
Advisories
11
The sctp_init function in net/sctp/protocol.c in the Linux kernel before 4.2.3 has an incorrect sequence of protocol-initialization steps, which allows local users to cause a denial of service (panic or memory corruption) by creating SCTP sockets before all of the steps have finished.
Weaknesses
- CWE-119
- Improper Restriction of Operations within the Bounds of a Memory Buffer
- CVE Status
- PUBLISHED
- CNA
- Red Hat, Inc.
- Published Date
-
2015-10-19 10:59:03
(9 years ago) - Updated Date
-
2023-02-13 00:52:54
(19 months ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...