In the Linux Kernel before version 4.15.8, 4.14.25, 4.9.87, 4.4.121, 4.1.51, and 3.2.102, an error in the "_sctp_make_chunk()" function (net/sctp/sm_make_chunk.c) when handling SCTP packets length can be exploited to cause a kernel crash.
Advisories
Source ID Title
Debian DLA Debian DLA DLA-1369-1 linux security update
Debian DSA Debian DSA DSA-4187-1 linux security update
Debian DSA Debian DSA DSA-4188-1 linux security update
EUVD EUVD EUVD-2018-17570 In the Linux Kernel before version 4.15.8, 4.14.25, 4.9.87, 4.4.121, 4.1.51, and 3.2.102, an error in the "_sctp_make_chunk()" function (net/sctp/sm_make_chunk.c) when handling SCTP packets length can be exploited to cause a kernel crash.
Ubuntu USN Ubuntu USN USN-3654-1 Linux kernel vulnerabilities
Ubuntu USN Ubuntu USN USN-3654-2 Linux kernel (Xenial HWE) vulnerabilities
Ubuntu USN Ubuntu USN USN-3656-1 Linux kernel (Raspberry Pi 2, Snapdragon) vulnerabilities
Ubuntu USN Ubuntu USN USN-3697-1 Linux kernel vulnerabilities
Ubuntu USN Ubuntu USN USN-3697-2 Linux kernel (OEM) vulnerabilities
Ubuntu USN Ubuntu USN USN-3698-1 Linux kernel vulnerabilities
Ubuntu USN Ubuntu USN USN-3698-2 Linux kernel (Trusty HWE) vulnerabilities
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: flexera

Published:

Updated: 2024-08-05T05:47:55.973Z

Reserved: 2018-01-19T00:00:00

Link: CVE-2018-5803

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2018-06-12T16:29:00.453

Modified: 2024-11-21T04:09:26.350

Link: CVE-2018-5803

cve-icon Redhat

Severity : Moderate

Publid Date: 2018-02-09T00:00:00Z

Links: CVE-2018-5803 - Bugzilla

cve-icon OpenCVE Enrichment

No data.