retired/CVE-2015-5283


1
2
3
4
5
6
7
8
9
10
11
12
13

Description: Creating multiple sockets when SCTP module isn't loaded leads to kernel panic
References:
 http://patchwork.ozlabs.org/patch/515996/
Notes:
Bugs:
upstream: released (4.3-rc3) [8e2d61e0aed2b7c4ecb35844fe07e0b2b762dee4]
3.16-upstream-stable: released (3.16.7-ckt18) [eb084bd187c25f0b63556a4f6c440e3ac96ecaf5]
3.2-upstream-stable: N/A ("Vulnerable code not present")
2.6.32-upstream-stable: N/A ("Vulnerable code not present")
sid: released (4.2.1-2) [bugfix/all/sctp-fix-race-on-protocol-netns-initialization.patch]
3.16-jessie-security: released (3.16.7-ckt11-1+deb8u5) [bugfix/all/sctp-fix-race-on-protocol-netns-initialization.patch]
3.2-wheezy-security: N/A ("Vulnerable code not present")
2.6.32-squeeze-security: N/A ("Vulnerable code not present")