CVE-2008-4618

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 2.6.27 openSUSE kernel-rt and kernel-rt debug (affected versions not specified)

Description The issue is related to the improper handling of protocol violations in the Stream Control Transmission Protocol (sctp) implementation, allowing attackers to cause a denial of service via unspecified vectors. This is related to functions such as sctp sf violation paramlen, sctp sf abort violation, and sctp make abort violation. Additionally, there are multiple vulnerabilities in the openSUSE kernel-rt and kernel-rt debug packages that can lead to disruption of protected information and can be exploited remotely.

Recommendations For Linux kernel versions prior to 2.6.27, update to version 2.6.27 or later to resolve the issue. For openSUSE kernel-rt and kernel-rt debug, at the moment, there is no information about a newer version that contains a fix for this vulnerability.