Intrusion Prevention

Linux.Kernel.SCTP.sk.ack.backlog.Integer.Underflow

Description

This indicates an attack attempt against an Integer Underflow vulnerability in Linux Kernel SCTP Protocol.
The vulnerability is caused by an error when the vulnerable software handles crafted SCTP packets. A remote attacker can exploit this to cause denial of service conditions on the affected server.

Affected Products

Linux Kernel Project Kernel prior to mainline v3.16-rc1

Impact

Denial of Service: Remote attacker can crash vulnerable systems.

Recommended Actions

Apply the most recent upgrade or patch from the vendor.
http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=f2815633504b442ca0b0605c16bf3d88a3a0fcea

CVE References

CVE-2014-4667