Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [day] [month] [year] [list]
Date: Wed, 17 Mar 2010 09:08:52 +0800
From: Eugene Teo <>
Subject: CVE-2010-0008 kernel: sctp remote denial of service

Telesys Software reported a flaw was found in the sctp_rcv_ootb() 
function in the Linux kernel Stream Control Transmission Protocol (SCTP) 
implementation. A remote attacker could send a specially-crafted SCTP 
packet to a target system, resulting in a denial of service.

Thanks, Eugene

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.