CVE-2010-0008 — Vulnetix

Try Vulnetix Request Demo

CVE-2010-0008 PUBLISHED CVSS 7.800000190734863 HIGH

The sctp_rcv_ootb function in the SCTP implementation in the Linux kernel before 2.6.23 allows remote attackers to cause a denial of service (infinite loop) via (1) an Out Of The Blue (OOTB) chunk or (2) a chunk of zero length.

EPSS 2.64% · 85.6th percentile

Risk Scores

CVSS v2.0

7.800000190734863

EPSS Score

2.64%

85.6th percentile

Affected Products

Vendor	Product	Versions
linux	linux_kernel	2.6.22.18, 0, 2.6
n/a	n/a	n/a

Timeline

Mar 19, 2010 CVE Published
Feb 4, 2022 EPSS Score
Mar 28, 2022 EPSS Score
May 19, 2022 EPSS Score
Sep 1, 2022 EPSS Score
Oct 23, 2022 EPSS Score
Dec 14, 2022 EPSS Score
Feb 3, 2023 EPSS Score
Feb 4, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Mar 28, 2023 EPSS Score
May 19, 2023 EPSS Score

References

http://secunia.com/advisories/39295 advisory
RHSA-2010:0146 vendor-advisory
RHSA-2010:0147 vendor-advisory
[oss-security] 20100317 CVE-2010-0008 kernel: sctp remote denial of service mailing-list
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=ece25dfa0991f65c4e1d26beb1c3c45bda4239b8 url
43315 third-party-advisory
oval:org.mitre.oval:def:11160 vdb
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.23 url
http://www.vmware.com/security/advisories/VMSA-2011-0003.html url
RHSA-2010:0342 vendor-advisory
20110211 VMSA-2011-0003 Third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX mailing-list
https://bugzilla.redhat.com/show_bug.cgi?id=555658 url
https://nvd.nist.gov/vuln/detail/CVE-2010-0008 advisory
https://access.redhat.com/errata/RHSA-2010:0146 url
https://access.redhat.com/errata/RHSA-2010:0147 url
https://access.redhat.com/errata/RHSA-2010:0148 url
https://access.redhat.com/errata/RHSA-2010:0149 url
https://access.redhat.com/errata/RHSA-2010:0172 url
https://access.redhat.com/errata/RHSA-2010:0342 url
https://access.redhat.com/security/cve/CVE-2010-0008 url

…and 1 more

Open in Interactive Console →