F5 Networks BIG-IP : Linux kernel vulnerability (K02236463)
High Nessus Plugin ID 118617
Synopsis
The remote device is missing a vendor-supplied security patch.
Description
The sctp_v6_create_accept_sk function in net/sctp/ipv6.c in the Linux
kernel through 4.11.1 mishandles inheritance, which allows local users
to cause a denial of service or possibly have unspecified other impact
via crafted system calls, a related issue to CVE-2017-8890.
(CVE-2017-9075)
Impact
This vulnerability allows malicious users to cause a denial of service
(DoS) on the F5 product.
Solution
Upgrade to one of the non-vulnerable versions listed in the F5
Solution K02236463.