Intrusion Prevention

Linux.Kernel.SCTP.ASCONF.INIT.Memory.Corruption

Description

This indicates an attack attempt against a Memory Corruption vulnerability in Linux Kernel SCTP Protocol.
The vulnerability is caused by an error when the vulnerable software handles crafted SCTP packets. It allows a remote attacker to crash vulnerable systems.

Affected Products

Linux Kernel Project Kernel mainline prior to e40607cbe270a9e8360907cb1e62ddf0736e4864

Impact

Denial of Service: Remote attacker can crash vulnerable systems.

Recommended Actions

Apply the most recent upgrade or patch from the vendor.
https://git.kernel.org/cgit/linux/kernel/git/davem/net.git/commit/?id=e40607cbe270a9e8360907cb1e62ddf0736e4864

CVE References

CVE-2014-7841