Candidate: CVE-2010-3705
Description:
 sctp out-of-bounds issue
References:
 http://marc.info/?l=linux-kernel&m=128596992418814&w=2
 http://git.kernel.org/?p=linux/kernel/git/davem/net-2.6.git;a=commitdiff;h=51e97a12bef19b7e43199fc153cf9bd5f2140362
Notes:
 jmm> Submitted for stable 2011-01-06
Bugs:
upstream: released (2.6.36) [51e97a12bef19b7e43199fc153cf9bd5f2140362]
2.6.32-upstream-stable: released (2.6.32.30)
linux-2.6: released (2.6.32-25) [bugfix/all/sctp-fix-out-of-bounds-reading-in-sctp_assoc_get_hmac.patch]
2.6.26-lenny-security: released (2.6.26-26lenny1) [bugfix/all/sctp-fix-out-of-bounds-reading-in-sctp_asoc_get_hmac.patch]
2.6.32-squeeze-security: released (2.6.32-25) [bugfix/all/sctp-fix-out-of-bounds-reading-in-sctp_assoc_get_hmac.patch]