CVE-2014-5077 — HIGH (7.1) — White Hats Nepal

Q: How severe is CVE-2014-5077?

CVE-2014-5077 has been rated HIGH with a CVSS base score of 7.1/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2014-5077?

Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel, Suse Linux Enterprise Desktop, Suse Linux Enterprise Real Time Extension, Suse Linux Enterprise Server, Redhat Enterprise Linux Eus.

Vulnerability Description

The sctp_assoc_update function in net/sctp/associola.c in the Linux kernel through 3.15.8, when SCTP authentication is enabled, allows remote attackers to cause a denial of service (NULL pointer dereference and OOPS) by starting to establish an association between two endpoints immediately after an exchange of INIT and INIT ACK chunks to establish an earlier association between these endpoints in the opposite direction.

CVSS Score

7.1

HIGH

AV:N/AC:M/Au:N/C:N/I:N/A:C

Confidentiality

NONE

Integrity

NONE

Availability

COMPLETE

Affected Products

Vendor	Product	Versions
Linux	Linux Kernel	>= 2.6.24, < 3.2.63
Suse	Linux Enterprise Desktop	11
Suse	Linux Enterprise Real Time Extension	11
Suse	Linux Enterprise Server	11
Redhat	Enterprise Linux Eus	6.5
Redhat	Enterprise Linux Server Aus	6.2
Redhat	Enterprise Linux Server Tus	6.5
Canonical	Ubuntu Linux	12.04

Related Weaknesses (CWE)

CWE-476

References

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=Vendor Advisory
http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00006.htmlMailing ListThird Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00007.htmlMailing ListThird Party Advisory
http://rhn.redhat.com/errata/RHSA-2014-1083.htmlThird Party Advisory
http://rhn.redhat.com/errata/RHSA-2014-1668.htmlThird Party Advisory
http://rhn.redhat.com/errata/RHSA-2014-1763.htmlThird Party Advisory
http://secunia.com/advisories/59777Third Party Advisory
http://secunia.com/advisories/60430Third Party Advisory
http://secunia.com/advisories/60545Third Party Advisory
http://secunia.com/advisories/60564Third Party Advisory
http://secunia.com/advisories/60744Third Party Advisory
http://secunia.com/advisories/62563Third Party Advisory
http://www.openwall.com/lists/oss-security/2014/07/26/1Mailing ListThird Party Advisory
http://www.securityfocus.com/bid/68881Third Party AdvisoryVDB Entry
http://www.securitytracker.com/id/1030681Third Party AdvisoryVDB Entry

FAQ

What is CVE-2014-5077?

CVE-2014-5077 is a vulnerability with a CVSS score of 7.1 (HIGH). The sctp_assoc_update function in net/sctp/associola.c in the Linux kernel through 3.15.8, when SCTP authentication is enabled, allows remote attackers to cause a denial of service (NULL pointer deref...

How severe is CVE-2014-5077?

CVE-2014-5077 has been rated HIGH with a CVSS base score of 7.1/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2014-5077?

Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel, Suse Linux Enterprise Desktop, Suse Linux Enterprise Real Time Extension, Suse Linux Enterprise Server, Redhat Enterprise Linux Eus.