CVE-2014-5077

HIGH

Description

The sctp_assoc_update function in net/sctp/associola.c in the Linux kernel through 3.15.8, when SCTP authentication is enabled, allows remote attackers to cause a denial of service (NULL pointer dereference and OOPS) by starting to establish an association between two endpoints immediately after an exchange of INIT and INIT ACK chunks to establish an earlier association between these endpoints in the opposite direction.

References

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=1be9a950c646c9092fb3618197f7b6bfb50e82aa

http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00006.html

http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00007.html

http://rhn.redhat.com/errata/RHSA-2014-1083.html

http://rhn.redhat.com/errata/RHSA-2014-1668.html

http://rhn.redhat.com/errata/RHSA-2014-1763.html

http://secunia.com/advisories/59777

http://secunia.com/advisories/60430

http://secunia.com/advisories/60545

http://secunia.com/advisories/60564

http://secunia.com/advisories/60744

http://secunia.com/advisories/62563

http://www.openwall.com/lists/oss-security/2014/07/26/1

http://www.securityfocus.com/bid/68881

http://www.securitytracker.com/id/1030681

http://www.ubuntu.com/usn/USN-2334-1

http://www.ubuntu.com/usn/USN-2335-1

http://www.ubuntu.com/usn/USN-2358-1

http://www.ubuntu.com/usn/USN-2359-1

https://bugzilla.redhat.com/show_bug.cgi?id=1122982

https://exchange.xforce.ibmcloud.com/vulnerabilities/95134

https://github.com/torvalds/linux/commit/1be9a950c646c9092fb3618197f7b6bfb50e82aa

Details

Source: MITRE

Published: 2014-08-01

Updated: 2020-08-13

Type: CWE-476

Risk Information

CVSS v2.0

Base Score: 7.1

Vector: AV:N/AC:M/Au:N/C:N/I:N/A:C

Impact Score: 6.9

Exploitability Score: 8.6

Severity: HIGH

Vulnerable Software

Configuration 1

OR

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions up to 3.15.8 (inclusive)

Configuration 2

OR

cpe:2.3:o:suse:linux_enterprise_desktop:11:sp3:*:*:*:*:*:*

cpe:2.3:o:suse:linux_enterprise_real_time_extension:11:sp3:*:*:*:*:*:*

cpe:2.3:o:suse:linux_enterprise_server:11:sp3:*:*:*:*:*:*

cpe:2.3:o:suse:linux_enterprise_server:11:sp3:*:*:*:vmware:*:*

Configuration 3

OR

cpe:2.3:o:redhat:enterprise_linux_eus:6.5:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server_aus:6.2:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server_aus:6.5:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server_tus:6.5:*:*:*:*:*:*:*

Configuration 4

OR

cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*

Tenable Plugins

View all (33 total)

IDNameProductFamilySeverity
124984EulerOS Virtualization for ARM 64 3.0.1.0 : kernel (EulerOS-SA-2019-1531)NessusHuawei Local Security Checks
high
124805EulerOS Virtualization 3.0.1.0 : kernel (EulerOS-SA-2019-1481)NessusHuawei Local Security Checks
high
83640SUSE SLES11 Security Update : kernel (SUSE-SU-2014:1138-1)NessusSuSE Local Security Checks
medium
83633SUSE SLES11 Security Update : kernel (SUSE-SU-2014:1105-1)NessusSuSE Local Security Checks
high
82087Debian DLA-103-1 : linux-2.6 security updateNessusDebian Local Security Checks
medium
81800Oracle Linux 7 : kernel (ELSA-2015-0290)NessusOracle Linux Local Security Checks
high
80152openSUSE Security Update : the Linux Kernel (openSUSE-SU-2014:1677-1)NessusSuSE Local Security Checks
high
80150openSUSE Security Update : the Linux Kernel (openSUSE-SU-2014:1669-1)NessusSuSE Local Security Checks
high
79328RHEL 6 : kernel (RHSA-2014:1872)NessusRed Hat Local Security Checks
high
79181CentOS 6 : kernel (CESA-2014:1392)NessusCentOS Local Security Checks
high
79061RHEL 6 : kernel (RHSA-2014:1763)NessusRed Hat Local Security Checks
high
79058RHEL 6 : kernel (RHSA-2014:1668)NessusRed Hat Local Security Checks
high
78851Scientific Linux Security Update : kernel on SL7.x x86_64 (20141028)NessusScientific Linux Local Security Checks
high
78845Scientific Linux Security Update : kernel on SL6.x i386/x86_64 (20141014)NessusScientific Linux Local Security Checks
high
78722RHEL 7 : kernel (RHSA-2014:1724)NessusRed Hat Local Security Checks
high
78721Oracle Linux 7 : kernel (ELSA-2014-1724)NessusOracle Linux Local Security Checks
high
78702CentOS 7 : kernel (CESA-2014:1724)NessusCentOS Local Security Checks
high
78651SuSE 11.3 Security Update : Linux kernel (SAT Patch Number 9750)NessusSuSE Local Security Checks
high
78650SuSE 11.3 Security Update : Linux kernel (SAT Patch Numbers 9746 / 9749 / 9751)NessusSuSE Local Security Checks
high
78618Oracle Linux 6 : kernel (ELSA-2014-1392)NessusOracle Linux Local Security Checks
high
78617Mandriva Linux Security Advisory : kernel (MDVSA-2014:201)NessusMandriva Local Security Checks
high
78580Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2014-3083)NessusOracle Linux Local Security Checks
high
78579Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2014-3082)NessusOracle Linux Local Security Checks
high
78578Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2014-3081)NessusOracle Linux Local Security Checks
high
78409RHEL 6 : kernel (RHSA-2014:1392)NessusRed Hat Local Security Checks
high
77821Ubuntu 14.04 LTS : linux vulnerabilities (USN-2359-1)NessusUbuntu Local Security Checks
high
77820Ubuntu 12.04 LTS : linux-lts-trusty vulnerabilities (USN-2358-1)NessusUbuntu Local Security Checks
high
77490Ubuntu 12.04 LTS : linux vulnerabilities (USN-2334-1)NessusUbuntu Local Security Checks
high
77489Ubuntu 10.04 LTS : linux-ec2 vulnerabilities (USN-2333-1)NessusUbuntu Local Security Checks
high
77488Ubuntu 10.04 LTS : linux vulnerabilities (USN-2332-1)NessusUbuntu Local Security Checks
high
77298RHEL 6 : MRG (RHSA-2014:1083)NessusRed Hat Local Security Checks
medium
77095Fedora 19 : kernel-3.14.15-100.fc19 (2014-9142)NessusFedora Local Security Checks
high
76984Fedora 20 : kernel-3.15.7-200.fc20 (2014-9010)NessusFedora Local Security Checks
high