Rapid7 Vulnerability & Exploit Database

SUSE Linux Security Vulnerability: CVE-2008-4576

Back to Search

SUSE Linux Security Vulnerability: CVE-2008-4576

Severity
8
CVSS
(AV:N/AC:L/Au:N/C:N/I:N/A:C)
Published
10/15/2008
Created
07/25/2018
Added
02/17/2015
Modified
06/21/2018

Description

sctp in Linux kernel before 2.6.25.18 allows remote attackers to cause a denial of service (OOPS) via an INIT-ACK that states the peer does not support AUTH, which causes the sctp_process_init function to clean up active transports and triggers the OOPS when the T1-Init timer expires.

Solution(s)

  • suse-upgrade-dapl
  • suse-upgrade-dapl-32bit
  • suse-upgrade-dapl-devel
  • suse-upgrade-dapl-devel-32bit
  • suse-upgrade-dapl2
  • suse-upgrade-dapl2-32bit
  • suse-upgrade-dapl2-devel
  • suse-upgrade-dapl2-devel-32bit
  • suse-upgrade-ib-bonding
  • suse-upgrade-ib-bonding-kmp-rt
  • suse-upgrade-ib-bonding-kmp-rt_bigsmp
  • suse-upgrade-ib-bonding-kmp-rt_debug
  • suse-upgrade-ib-bonding-kmp-rt_timing
  • suse-upgrade-ibutils
  • suse-upgrade-ibutils-32bit
  • suse-upgrade-ibvexdmtools
  • suse-upgrade-infiniband-diags
  • suse-upgrade-kernel-bigsmp
  • suse-upgrade-kernel-debug
  • suse-upgrade-kernel-default
  • suse-upgrade-kernel-docs
  • suse-upgrade-kernel-iseries64
  • suse-upgrade-kernel-kdump
  • suse-upgrade-kernel-pae
  • suse-upgrade-kernel-ppc64
  • suse-upgrade-kernel-ps3
  • suse-upgrade-kernel-rt
  • suse-upgrade-kernel-rt_bigsmp
  • suse-upgrade-kernel-rt_debug
  • suse-upgrade-kernel-rt_timing
  • suse-upgrade-kernel-source
  • suse-upgrade-kernel-syms
  • suse-upgrade-kernel-vanilla
  • suse-upgrade-kernel-xen
  • suse-upgrade-kernel-xenpae
  • suse-upgrade-libcxgb3
  • suse-upgrade-libcxgb3-32bit
  • suse-upgrade-libcxgb3-devel
  • suse-upgrade-libcxgb3-devel-32bit
  • suse-upgrade-librdmacm
  • suse-upgrade-librdmacm-32bit
  • suse-upgrade-librdmacm-devel
  • suse-upgrade-librdmacm-devel-32bit
  • suse-upgrade-mpi-selector
  • suse-upgrade-mpitests
  • suse-upgrade-mpitests-mvapich
  • suse-upgrade-mpitests-mvapich2
  • suse-upgrade-mpitests-openmpi
  • suse-upgrade-mstflint
  • suse-upgrade-mvapich
  • suse-upgrade-mvapich-devel
  • suse-upgrade-mvapich2
  • suse-upgrade-mvapich2-32bit
  • suse-upgrade-mvapich2-devel
  • suse-upgrade-ofed
  • suse-upgrade-ofed-cxgb3-nic-kmp-rt
  • suse-upgrade-ofed-cxgb3-nic-kmp-rt_bigsmp
  • suse-upgrade-ofed-cxgb3-nic-kmp-rt_debug
  • suse-upgrade-ofed-cxgb3-nic-kmp-rt_timing
  • suse-upgrade-ofed-doc
  • suse-upgrade-ofed-kmp-rt
  • suse-upgrade-ofed-kmp-rt_bigsmp
  • suse-upgrade-ofed-kmp-rt_debug
  • suse-upgrade-ofed-kmp-rt_timing
  • suse-upgrade-openmpi
  • suse-upgrade-openmpi-32bit
  • suse-upgrade-openmpi-devel
  • suse-upgrade-openmpi-devel-32bit
  • suse-upgrade-opensm
  • suse-upgrade-opensm-32bit
  • suse-upgrade-opensm-devel
  • suse-upgrade-opensm-devel-32bit
  • suse-upgrade-perftest
  • suse-upgrade-qlvnictools
  • suse-upgrade-slert-release
  • suse-upgrade-suse-release

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;