CVE-2014-3687 vulnerability in Red Hat and Other Products
Published on November 10, 2014

The sctp_assoc_lookup_asconf_ack function in net/sctp/associola.c in the SCTP implementation in the Linux kernel through 3.17.2 allows remote attackers to cause a denial of service (panic) via duplicate ASCONF chunks that trigger an incorrect uncork within the side-effect interpreter.

Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory NVD

Products Associated with CVE-2014-3687

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2014-3687 are published in these products:

Red Hat Enterprise Mrg

Canonical Ubuntu Linux

Debian Linux

Linux Kernel

Novell Suse Linux Enterprise Desktop

Novell Suse Linux Enterprise Server

OpenSuse Evergreen

Oracle Linux

Suse Linux Enterprise Real Time Extension

Suse Linux Enterprise Software Development Kit

Suse Linux Enterprise Workstation Extension

Suse Linux Enterprise Server

Exploit Probability

EPSS

3.72%

Percentile

87.73%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2014-3687 vulnerability in Red Hat and Other ProductsPublished on November 10, 2014

Products Associated with CVE-2014-3687

Exploit Probability

CVE-2014-3687 vulnerability in Red Hat and Other Products
Published on November 10, 2014