Security Advisory

CVE-2015-1421

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2015-03-16 10:00:00

Last updated 2024-08-06 04:40:18

Assigner mitre

State PUBLISHED

Description

Use-after-free vulnerability in the sctp_assoc_update function in net/sctp/associola.c in the Linux kernel before 3.18.8 allows remote attackers to cause a denial of service (slab corruption and panic) or possibly have unspecified other impact by triggering an INIT collision that leads to improper handling of shared-key data.

← Browse all CVEs View on cve.org ↗