canonical ubuntu-linux CVE-2014-4667 vulnerability in Canonical and Other Products
Published on July 3, 2014

product logo product logo product logo product logo
The sctp_association_free function in net/sctp/associola.c in the Linux kernel before 3.15.2 does not properly manage a certain backlog value, which allows remote attackers to cause a denial of service (socket outage) via a crafted SCTP packet.

Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory NVD


Products Associated with CVE-2014-4667

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2014-4667 are published in these products:

Canonical Ubuntu Linux
 
Debian Linux
 
Linux Kernel
 
Suse Linux Enterprise Desktop
 
Suse Linux Enterprise Real Time Extension
 
Suse Linux Enterprise Server
 

Exploit Probability

EPSS
14.14%
Percentile
94.19%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.