oss-sec mailing list archives
CVE-2014-8160 Linux Kernel: SCTP firewalling fails until SCTP module is loaded
From: Wade Mealing <wmealing () redhat com>
Date: Wed, 14 Jan 2015 00:53:19 -0500 (EST)
CVE-2014-8160 has been assigned to this issue in net/netfilter/nf_conntrack_proto_generic.c that can allow protocols that do not have a protocol handler kernel module loaded through the iptables firewall even if explicitly denied by rule. For more detail see: http://www.spinics.net/lists/netfilter-devel/msg33430.html Wade Mealing -- Red Hat -- Product Security
Current thread:
- CVE-2014-8160 Linux Kernel: SCTP firewalling fails until SCTP module is loaded Wade Mealing (Jan 13)