[kernel-sec-discuss] [Git][kernel-team/kernel-sec][master] Add CVE-2018-5803

Salvatore Bonaccorso gitlab at salsa.debian.org
Sat Mar 3 07:49:35 UTC 2018


Salvatore Bonaccorso pushed to branch master at Debian kernel team / kernel-sec


Commits:
4a37685b by Salvatore Bonaccorso at 2018-03-03T08:49:22+01:00
Add CVE-2018-5803

- - - - -


1 changed file:

- + active/CVE-2018-5803


Changes:

=====================================
active/CVE-2018-5803
=====================================
--- /dev/null
+++ b/active/CVE-2018-5803
@@ -0,0 +1,14 @@
+Description: Missing length check of payload in net/sctp/sm_make_chunk.c:_sctp_make_chunk() function allows denial of service
+References:
+ https://bugzilla.redhat.com/show_bug.cgi?id=1551051
+ https://packetstormsecurity.com/files/146620/secunia-sctpmakechunkdos.txt
+Notes:
+Bugs:
+upstream: released (4.16-rc1) [07f2c7ab6f8d0a7e7c5764c4e6cc9c52951b9d9c]
+4.9-upstream-stable:
+3.16-upstream-stable:
+3.2-upstream-stable:
+sid:
+4.9-stretch-security:
+3.16-jessie-security:
+3.2-wheezy-security:



View it on GitLab: https://salsa.debian.org/kernel-team/kernel-sec/commit/4a37685b51d101697fa41ee482ffe0e92e9aa667

---
View it on GitLab: https://salsa.debian.org/kernel-team/kernel-sec/commit/4a37685b51d101697fa41ee482ffe0e92e9aa667
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/kernel-sec-discuss/attachments/20180303/f4f751c5/attachment.html>


More information about the kernel-sec-discuss mailing list