A flaw was found in the sctp_make_strreset_req function in net/sctp/sm_make_chunk.c in the SCTP network protocol in the Linux kernel with a local user privilege access. In this flaw, an attempt to use more buffer than is allocated triggers a BUG_ON issue, leading to a denial of service (DOS).
The product does not correctly convert an object, resource, or structure from one type to a different type.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Linux_kernel | Linux | * | 5.15 (excluding) |
Linux_kernel | Linux | 5.15 (including) | 5.15 (including) |
Linux_kernel | Linux | 5.15-rc1 (including) | 5.15-rc1 (including) |
Linux_kernel | Linux | 5.15-rc2 (including) | 5.15-rc2 (including) |
Linux_kernel | Linux | 5.15-rc3 (including) | 5.15-rc3 (including) |
Linux_kernel | Linux | 5.15-rc4 (including) | 5.15-rc4 (including) |
Linux_kernel | Linux | 5.15-rc5 (including) | 5.15-rc5 (including) |