CVE-2014-5077
UnknownEPSS 5.79%
Last modified
CVE-2014-5077 is a vulnerability of currently unknown severity. The sctp_assoc_update function in net/sctp/associola.c in the Linux kernel through 3.15.8, when SCTP authentication is enabled, allows remote attackers to cause a denial of service (NULL pointer dereference and OOPS) by starting to establish an association between two endpoints immediately after an exchange of INIT and INIT ACK chunks to establish an earlier association between these endpoints in the opposite direction.. EPSS estimates a 5.79% chance of exploitation in the next 30 days.
Description
The sctp_assoc_update function in net/sctp/associola.c in the Linux kernel through 3.15.8, when SCTP authentication is enabled, allows remote attackers to cause a denial of service (NULL pointer dereference and OOPS) by starting to establish an association between two endpoints immediately after an exchange of INIT and INIT ACK chunks to establish an earlier association between these endpoints in the opposite direction.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions | Update |
|---|---|---|---|
| Linux | Linux Kernel | >= 2.6.24, < 3.2.63 | — |
| Linux | Linux Kernel | >= 3.3, < 3.4.103 | — |
| Linux | Linux Kernel | >= 3.5, < 3.10.53 | — |
| Linux | Linux Kernel | >= 3.11, < 3.12.27 | — |
| Linux | Linux Kernel | >= 3.13, < 3.14.17 | — |
| Linux | Linux Kernel | >= 3.15, < 3.15.10 | — |
| Suse | Linux Enterprise Desktop | 11 | Sp3 |
| Suse | Linux Enterprise Real Time Extension | 11 | Sp3 |
| Suse | Linux Enterprise Server | 11 | Sp3 |
| Redhat | Enterprise Linux Eus | 6.5 | — |
| Redhat | Enterprise Linux Server Aus | 6.2 | — |
| Redhat | Enterprise Linux Server Aus | 6.5 | — |
| Redhat | Enterprise Linux Server Tus | 6.5 | — |
| Canonical | Ubuntu Linux | 12.04 | — |
| Canonical | Ubuntu Linux | 14.04 | — |
References
- http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00006.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00007.htmlMailing List, Third Party Advisory
- http://rhn.redhat.com/errata/RHSA-2014-1083.htmlThird Party Advisory
- http://rhn.redhat.com/errata/RHSA-2014-1668.htmlThird Party Advisory
- http://rhn.redhat.com/errata/RHSA-2014-1763.htmlThird Party Advisory
- http://secunia.com/advisories/59777Third Party Advisory
- http://secunia.com/advisories/60430Third Party Advisory
- http://secunia.com/advisories/60545Third Party Advisory
- http://secunia.com/advisories/60564Third Party Advisory
- http://secunia.com/advisories/60744Third Party Advisory
- http://secunia.com/advisories/62563Third Party Advisory
- http://www.openwall.com/lists/oss-security/2014/07/26/1Mailing List, Third Party Advisory
- http://www.securityfocus.com/bid/68881Third Party Advisory, VDB Entry
- http://www.securitytracker.com/id/1030681Third Party Advisory, VDB Entry
- http://www.ubuntu.com/usn/USN-2334-1Third Party Advisory
- http://www.ubuntu.com/usn/USN-2335-1Third Party Advisory
- http://www.ubuntu.com/usn/USN-2358-1Third Party Advisory
- http://www.ubuntu.com/usn/USN-2359-1Third Party Advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=1122982Issue Tracking, Patch, Third Party Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/95134Third Party Advisory, VDB Entry
- https://github.com/torvalds/linux/commit/1be9a950c646c9092fb3618197f7b6bfb50e82aaPatch, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00006.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00007.htmlMailing List, Third Party Advisory
- http://rhn.redhat.com/errata/RHSA-2014-1083.htmlThird Party Advisory
- http://rhn.redhat.com/errata/RHSA-2014-1668.htmlThird Party Advisory
- http://rhn.redhat.com/errata/RHSA-2014-1763.htmlThird Party Advisory
- http://secunia.com/advisories/59777Third Party Advisory
- http://secunia.com/advisories/60430Third Party Advisory
- http://secunia.com/advisories/60545Third Party Advisory
- http://secunia.com/advisories/60564Third Party Advisory
- http://secunia.com/advisories/60744Third Party Advisory
- http://secunia.com/advisories/62563Third Party Advisory
- http://www.openwall.com/lists/oss-security/2014/07/26/1Mailing List, Third Party Advisory
- http://www.securityfocus.com/bid/68881Third Party Advisory, VDB Entry
- http://www.securitytracker.com/id/1030681Third Party Advisory, VDB Entry
- http://www.ubuntu.com/usn/USN-2334-1Third Party Advisory
- http://www.ubuntu.com/usn/USN-2335-1Third Party Advisory
- http://www.ubuntu.com/usn/USN-2358-1Third Party Advisory
- http://www.ubuntu.com/usn/USN-2359-1Third Party Advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=1122982Issue Tracking, Patch, Third Party Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/95134Third Party Advisory, VDB Entry
- https://github.com/torvalds/linux/commit/1be9a950c646c9092fb3618197f7b6bfb50e82aaPatch, Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2014-5077?
The sctp_assoc_update function in net/sctp/associola.c in the Linux kernel through 3.15.8, when SCTP authentication is enabled, allows remote attackers to cause a denial of service (NULL pointer dereference and OOPS) by starting to establish an association between two endpoints immediately after an exchange of INIT and INIT ACK chunks to establish an earlier association between these endpoints in the opposite direction.
How severe is CVE-2014-5077?
Severity scoring for CVE-2014-5077 is pending analysis. The EPSS model estimates a 5.79% probability of exploitation in the next 30 days.
How do I fix CVE-2014-5077?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.
Are you affected by CVE-2014-5077?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST