Info

Disclosure

May 09, 2006

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

Description

The Linux kernel contains a flaw that may allow a remote denial of service. The issue is triggered because of a flow in the kernel's Stream Control Transmission Protocol (SCTP). When a crafted 'ECNE chunk' SCTP is sent to the system, an incorrect state table entry might be created when the packet is received in closed state. This might result in a kernel panic and hence loss of availability for the platform.

Classification

Location: Remote / Network Access
Attack Type: Denial of Service
Impact: Loss of Availability
Exploit: Exploit Unknown
Disclosure: OSVDB Verified, Vendor Verified

Solution

Upgrade to version 2.4.33, 2.6.17 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

Linux

Kernel

2.6.16

References

Secunia Advisory ID: 19990 20157 20237 20398 20671 20716 21476 21745 21954
CVE ID: 2006-2271 (see also: NVD)
SCIP VulDB ID: 2215
Related OSVDB ID: 25633
VUPEN Advisory: ADV-2006-1734
Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2006-05/0227.html
Vendor Specific News/Changelog Entry: http://git.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=35d63edb1c807bc5317e49592260e84637bc432e
http://git.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=62b08083ec3dbfd7e533c8d230dd1d8191a6e813
http://kernel.org/pub/linux/kernel/v2.4/ChangeLog-2.4.33
Other Advisory URL: http://labs.musecurity.com/advisories/MU-200605-01.txt
http://www.us.debian.org/security/2006/dsa-1097
Vendor URL: http://lksctp.sourceforge.net/
Vendor Specific Advisory URL: http://support.avaya.com/elmodocs2/security/ASA-2006-161.htm
http://www.mandriva.com/security/advisories?name=MDKSA-2006:086
http://www.novell.com/linux/security/advisories/2006-05-31.html
http://www.trustix.org/errata/2006/0051/
http://www.ubuntu.com/usn/usn-302-1
RedHat RHSA: RHSA-2006:0493

Credit

Mu Security - -

Direct URL: http://osvdb.org/25632