Linux.Kernel.Netfilter.Conntrack.Proto.SCTP.C.DoS

description-logoDescription

This indicates an attack attempt against a denial-of-service vulnerability in the Linux Kernel.
This vulnerability is due to insufficient checks during the processing
of SCTP packets by the netfilter module, namely those without any Chunk elements. By sending a crafted SCTP packet to a target host, an attacker may exploit this vulnerability to shut down a vulnerable host, thus creating a system-wide denial-of-service condition.

affected-products-logoAffected Products

Linux Kernel version 2.6.17.2 and prior.
Linux Kernel version 2.6.16.22 and prior.

Impact logoImpact

Denial of service

recomended-action-logoRecommended Actions

Upgrade to Linux Kernel version 2.6.17.3 or 2.6.16.23 :
http://www.kernel.org

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)