Signature Detail

This site is deprecated. Please CLICK HERE for latest updates

Short Name	APP:LINUX-KERNEL-SCTP-OOB
Severity	Major
Recommended	Yes
Recommended Action	Drop
Category	APP
Keywords	Linux Kernel SCTP sctp_sf_ootb Out of Bounds Read
Release Date	2017/03/23
Update Number	2840
Supported Platforms	idp-4.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+

APP: Linux Kernel SCTP sctp_sf_ootb Out of Bounds Read

This signature detects attempts to exploit a known vulnerability in the SCTP networking module of the Linux kernel. A successful exploitation could result in denial of service conditions.

Extended Description

The sctp_sf_ootb function in net/sctp/sm_statefuns.c in the Linux kernel before 4.8.8 lacks chunk-length checking for the first chunk, which allows remote attackers to cause a denial of service (out-of-bounds slab access) or possibly have unspecified other impact via crafted SCTP data.

Affected Products

Linux linux_kernel 4.8.7

References

CVE: CVE-2016-9555

Signature Detail

This site is deprecated. Please CLICK HERE for latest updates

Short Name

Severity

Recommended

Recommended Action

Category

Keywords

Release Date

Update Number

Supported Platforms

APP: Linux Kernel SCTP sctp_sf_ootb Out of Bounds Read

Extended Description

Affected Products

References