Intrusion Prevention

Linux.Kernel.SCTP.Out.of.Bounds.Read.DoS

Description

This indicates an attack attempt against a Denial Of Service vulnerability in the Linux Kernel.
This vulnerability is due to insufficient checks during the processing of SCTP packets by the networking module in Linux kernel. By sending a crafted SCTP packet to a target host, an attacker may exploit this vulnerability to shut down a vulnerable host, thus creating a system-wide denial-of-service condition.

Affected Products

Linux Kernel Project Kernel mainline prior to bf911e985d6bbaa328c20c3e05f4eb03de11fdd6

Impact

Denial of Service: Remote attackers can crash vulnerable systems.

Recommended Actions

Apply the most recent upgrade or patch from the vendor corresponding to the Linux distro you are using.

CVE References

CVE-2016-9555