Linux SCTP (lksctp) before 2.6.17 allows remote attackers to cause a denial of service (kernel panic) via incoming IP fragmented (1) COOKIE_ECHO and (2) HEARTBEAT SCTP control chunks.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Stream_control_transmission_protocol | Lksctp | * | 2.6.16 (including) |