CVE-2008-3526
HIGH
7.8
CVSS Severity Score
Vulnerability Description
Integer overflow in the sctp_setsockopt_auth_key function in net/sctp/socket.c in the Stream Control Transmission Protocol (sctp) implementation in the Linux kernel 2.6.24-rc1 through 2.6.26.3 allows remote attackers to cause a denial of service (panic) or possibly have unspecified other impact via a crafted sca_keylength field associated with the SCTP_AUTH_KEY option.
Affected Platforms (CPE)
💻
Linux
Linux Kernel
= 2.6.24💻
Linux
Linux Kernel
= 2.6.24💻
Linux
Linux Kernel
= 2.6.24💻
Linux
Linux Kernel
= 2.6.24.1💻
Linux
Linux Kernel
= 2.6.24.2💻
Linux
Linux Kernel
= 2.6.24.3💻
Linux
Linux Kernel
= 2.6.24.4💻
Linux
Linux Kernel
= 2.6.24.5💻
Linux
Linux Kernel
= 2.6.24.6💻
Linux
Linux Kernel
= 2.6.24.7💻
Linux
Linux Kernel
= 2.6.24_rc1💻
Linux
Linux Kernel
= 2.6.24_rc4💻
Linux
Linux Kernel
= 2.6.24_rc5💻
Linux
Linux Kernel
= 2.6.25💻
Linux
Linux Kernel
= 2.6.25.1💻
Linux
Linux Kernel
= 2.6.25.2💻
Linux
Linux Kernel
= 2.6.25.3💻
Linux
Linux Kernel
= 2.6.25.4💻
Linux
Linux Kernel
= 2.6.25.5💻
Linux
Linux Kernel
= 2.6.25.6💻
Linux
Linux Kernel
= 2.6.25.7💻
Linux
Linux Kernel
= 2.6.25.8💻
Linux
Linux Kernel
= 2.6.25.9💻
Linux
Linux Kernel
= 2.6.25.10💻
Linux
Linux Kernel
= 2.6.25.11💻
Linux
Linux Kernel
= 2.6.25.12💻
Linux
Linux Kernel
= 2.6.25.13💻
Linux
Linux Kernel
= 2.6.25.14💻
Linux
Linux Kernel
= 2.6.25.15💻
Linux
Linux Kernel
= 2.6.26💻
Linux
Linux Kernel
= 2.6.26.1💻
Linux
Linux Kernel
= 2.6.26.2💻
Linux