SCTP Packet Length Handling Vulnerability in Linux Kernel

SCTP Packet Length Handling Vulnerability in Linux Kernel

CVE-2018-5803 · MEDIUM Severity

AV:L/AC:L/AU:N/C:N/I:N/A:C

In the Linux Kernel before version 4.15.8, 4.14.25, 4.9.87, 4.4.121, 4.1.51, and 3.2.102, an error in the "_sctp_make_chunk()" function (net/sctp/sm_make_chunk.c) when handling SCTP packets length can be exploited to cause a kernel crash.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.