CVE-2024-0639 | Linux Kernel up to 6.4 SCTP net/sctp/socket.c sctp_auto_asconf_init deadlock

Inserito da Angelo Barbosa | Gen 17, 2024 | CVE

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.4. Affected by this issue is the function sctp_auto_asconf_init of the file net/sctp/socket.c of the component SCTP. The manipulation leads to deadlock.

This vulnerability is handled as CVE-2024-0639. The attack can only be initiated within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-0639 | Linux Kernel up to 6.4 SCTP net/sctp/socket.c sctp_auto_asconf_init deadlock

Post correlati

CVE-2024-35832 | Linux Kernel up to 6.7.4 bcachefs bch_fs::snapshots memory corruption (565906787911/369acf97d6fd)

CVE-2023-41708 | Open-Xchange OX App Suite up to 7.10.6-rev38 App Loader cross site scripting

CVE-2024-33110 | D-Link DIR-845L up to 1.01KRb0 getcfg.php permission

CVE-2023-52389 | POCO up to 1.11.8p1/1.12.5p1 UTF32Encoding.cpp convert stack-based overflow (Issue 4320)