CVE-2009-0065

Buffer overflow in net/sctp/sm_statefuns.c in the Stream Control Transmission Protocol (sctp) implementation in the Linux kernel before 2.6.28-git8 allows remote attackers to have an unknown impact via an FWD-TSN (aka FORWARD-TSN) chunk with a large stream ID.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
10 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:C/I:C/A:C
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 92%
VendorProductVersion
linuxlinux_kernel
𝑥
≤ 2.6.27
linuxlinux_kernel
2.2.27
linuxlinux_kernel
2.4.36
linuxlinux_kernel
2.4.36.1
linuxlinux_kernel
2.4.36.2
linuxlinux_kernel
2.4.36.3
linuxlinux_kernel
2.4.36.4
linuxlinux_kernel
2.4.36.5
linuxlinux_kernel
2.4.36.6
linuxlinux_kernel
2.6
linuxlinux_kernel
2.6.18
linuxlinux_kernel
2.6.18:rc1
linuxlinux_kernel
2.6.18:rc2
linuxlinux_kernel
2.6.18:rc3
linuxlinux_kernel
2.6.18:rc4
linuxlinux_kernel
2.6.18:rc5
linuxlinux_kernel
2.6.18:rc6
linuxlinux_kernel
2.6.18:rc7
linuxlinux_kernel
2.6.19.4
linuxlinux_kernel
2.6.19.5
linuxlinux_kernel
2.6.19.6
linuxlinux_kernel
2.6.19.7
linuxlinux_kernel
2.6.20.16
linuxlinux_kernel
2.6.20.17
linuxlinux_kernel
2.6.20.18
linuxlinux_kernel
2.6.20.19
linuxlinux_kernel
2.6.20.20
linuxlinux_kernel
2.6.20.21
linuxlinux_kernel
2.6.21.5
linuxlinux_kernel
2.6.21.6
linuxlinux_kernel
2.6.21.7
linuxlinux_kernel
2.6.22
linuxlinux_kernel
2.6.22.1
linuxlinux_kernel
2.6.22.2
linuxlinux_kernel
2.6.22.8
linuxlinux_kernel
2.6.22.9
linuxlinux_kernel
2.6.22.10
linuxlinux_kernel
2.6.22.11
linuxlinux_kernel
2.6.22.12
linuxlinux_kernel
2.6.22.13
linuxlinux_kernel
2.6.22.14
linuxlinux_kernel
2.6.22.15
linuxlinux_kernel
2.6.22.17
linuxlinux_kernel
2.6.22.18
linuxlinux_kernel
2.6.22.19
linuxlinux_kernel
2.6.22.20
linuxlinux_kernel
2.6.22.21
linuxlinux_kernel
2.6.22.22
linuxlinux_kernel
2.6.22_rc1:_rc1
linuxlinux_kernel
2.6.22_rc7:_rc7
linuxlinux_kernel
2.6.23
linuxlinux_kernel
2.6.23.8
linuxlinux_kernel
2.6.23.9
linuxlinux_kernel
2.6.23.10
linuxlinux_kernel
2.6.23.11
linuxlinux_kernel
2.6.23.12
linuxlinux_kernel
2.6.23.13
linuxlinux_kernel
2.6.23.15
linuxlinux_kernel
2.6.23.16
linuxlinux_kernel
2.6.23.17
linuxlinux_kernel
2.6.23_rc1:_rc1
linuxlinux_kernel
2.6.24
linuxlinux_kernel
2.6.24.1
linuxlinux_kernel
2.6.24.2
linuxlinux_kernel
2.6.24.3
linuxlinux_kernel
2.6.24.4
linuxlinux_kernel
2.6.24.5
linuxlinux_kernel
2.6.24.6
linuxlinux_kernel
2.6.24.7
linuxlinux_kernel
2.6.24_rc1:_rc1
linuxlinux_kernel
2.6.24_rc4:_rc4
linuxlinux_kernel
2.6.24_rc5:_rc5
linuxlinux_kernel
2.6.25
linuxlinux_kernel
2.6.25
linuxlinux_kernel
2.6.25.1
linuxlinux_kernel
2.6.25.1
linuxlinux_kernel
2.6.25.2
linuxlinux_kernel
2.6.25.2
linuxlinux_kernel
2.6.25.3
linuxlinux_kernel
2.6.25.3
linuxlinux_kernel
2.6.25.4
linuxlinux_kernel
2.6.25.4
linuxlinux_kernel
2.6.25.5
linuxlinux_kernel
2.6.25.5
linuxlinux_kernel
2.6.25.6
linuxlinux_kernel
2.6.25.6
linuxlinux_kernel
2.6.25.7
linuxlinux_kernel
2.6.25.7
linuxlinux_kernel
2.6.25.8
linuxlinux_kernel
2.6.25.8
linuxlinux_kernel
2.6.25.9
linuxlinux_kernel
2.6.25.9
linuxlinux_kernel
2.6.25.10
linuxlinux_kernel
2.6.25.10
linuxlinux_kernel
2.6.25.11
linuxlinux_kernel
2.6.25.11
linuxlinux_kernel
2.6.25.12
linuxlinux_kernel
2.6.25.12
linuxlinux_kernel
2.6.25.13
linuxlinux_kernel
2.6.25.14
linuxlinux_kernel
2.6.25.15
linuxlinux_kernel
2.6.25.16
linuxlinux_kernel
2.6.25.17
linuxlinux_kernel
2.6.26
linuxlinux_kernel
2.6.26.1
linuxlinux_kernel
2.6.26.2
linuxlinux_kernel
2.6.26.3
linuxlinux_kernel
2.6.26.4
linuxlinux_kernel
2.6.26.5
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
linux
intrepid
Fixed 2.6.27-11.31
released
hardy
Fixed 2.6.24-23.52
released
gutsy
dne
dapper
dne
linux-source-2.6.15
intrepid
dne
hardy
dne
gutsy
dne
dapper
Fixed 2.6.15-54.76
released
linux-source-2.6.22
intrepid
dne
hardy
dne
gutsy
Fixed 2.6.22-16.62
released
dapper
dne
References