Vulnerabilities

CVE-2015-1421

by Fred · 16/03/2015

Use-after-free vulnerability in the sctp_assoc_update function in net/sctp/associola.c in the Linux kernel before 3.18.8 allows remote attackers to cause a denial of service (slab corruption and panic) or possibly have unspecified other impact by triggering an INIT collision that leads to improper handling of shared-key data.

Date published : 2015-03-16

http://www.securityfocus.com/bid/72356

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=600ddd6825543962fb807884169e57b580dba208

Similar

Tags: Cybersecurity Alert