ACK: [CVE artful/linux trusty/linux CVE-2018-5803] SCTP DOS
Kleber Souza
kleber.souza at canonical.com
Tue Jun 5 18:06:21 UTC 2018
On 06/04/18 05:24, Andy Whitcroft wrote:
> CVE-2018-5803:
> It was discovered that the SCTP Protocol implementation in
> the Linux kernel did not properly validate userspace provided
> payload lengths in some situations. A local attacker could
> use this to cause a denial of service (system crash).
>
> Following this email are patches for artful/linux (a cherry-pick) and
> trusty/linux (a backport). Other series have received this fix via
> upstream and stables.
>
> Proposing for SRU to artful/linux and trusty/linux.
>
> -apw
>
Acked-by: Kleber Sacilotto de Souza <kleber.souza at canonical.com>
More information about the kernel-team
mailing list