Linux · Linux Kernel · CVE-2013-4350
**Name of the Vulnerable Software and Affected Versions**
Linux kernel versions prior to 3.11.1
**Description**
The issue concerns the IPv6 SCTP implementation in the Linux kernel, which fails to trigger an intended configuration of IPsec encryption. This allows remote attackers to obtain sensitive information by sniffing the network.
**Recommendations**
For versions prior to 3.11.1, update to version 3.11.1 or later to resolve the issue.