Description: Missing length check of payload in net/sctp/sm_make_chunk.c:_sctp_make_chunk() function allows denial of service References: https://bugzilla.redhat.com/show_bug.cgi?id=1551051 https://packetstormsecurity.com/files/146620/secunia-sctpmakechunkdos.txt Notes: Bugs: upstream: released (4.16-rc1) [07f2c7ab6f8d0a7e7c5764c4e6cc9c52951b9d9c] 4.9-upstream-stable: released (4.9.87) [9b7d723439a444ea578462f50054641a09c45023] 3.16-upstream-stable: released (3.16.57) [ca566c761ec34bb6bce3a65d1a3688818f29b64f] 3.2-upstream-stable: released (3.2.102) [61079d7091f4a673a337b5d63e7e7e38ac405d37] sid: released (4.15.11-1) 4.9-stretch-security: released (4.9.88-1) 3.16-jessie-security: released (3.16.56-1) [bugfix/all/sctp-verify-size-of-a-new-chunk-in-_sctp_make_chunk.patch] 3.2-wheezy-security: released (3.2.101-1) [bugfix/all/sctp-verify-size-of-a-new-chunk-in-_sctp_make_chunk.patch]