DOS: Linux Kernel sk_ack Denial-Of-Service
This signature detects attempts to exploit a known vulnerability against Linux kernel while processing a certain type of SCTP packet. A successful attack can result in a denial-of-service condition.
Extended Description
The sctp_association_free function in net/sctp/associola.c in the Linux kernel before 3.15.2 does not properly manage a certain backlog value, which allows remote attackers to cause a denial of service (socket outage) via a crafted SCTP packet.
Affected Products
Suse linux_enterprise_server
Short Name
DOS:IP:LIN-KERNEL-SKACK-DOS
Severity
Major
Recommended
False
Recommended Action
None
Category
DOS
Keywords
CVE-2014-4667 Denial-Of-Service Kernel Linux bid:68224 sk_ack
Release Date
08/24/2015
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3650
Port
ip/132
False Positive
Unknown
Vendors
Canonical
Suse
Debian
Linux
CVSS Score
5.0