Unrated severityNVD Advisory· Published May 9, 2006· Updated Apr 16, 2026
CVE-2006-2272
CVE-2006-2272
Description
Linux SCTP (lksctp) before 2.6.17 allows remote attackers to cause a denial of service (kernel panic) via incoming IP fragmented (1) COOKIE_ECHO and (2) HEARTBEAT SCTP control chunks.
Affected products
1- cpe:2.3:a:lksctp:stream_control_transmission_protocol:*:*:*:*:*:*:*:*Range: <=2.6.16
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
25- archives.neohapsis.com/archives/fulldisclosure/2006-05/0227.htmlnvdPatch
- labs.musecurity.com/advisories/MU-200605-01.txtnvdPatchVendor Advisory
- secunia.com/advisories/19990nvdPatchVendor Advisory
- secunia.com/advisories/20157nvd
- secunia.com/advisories/20237nvd
- secunia.com/advisories/20398nvd
- secunia.com/advisories/20671nvd
- secunia.com/advisories/20716nvd
- secunia.com/advisories/20914nvd
- secunia.com/advisories/21476nvd
- secunia.com/advisories/21745nvd
- support.avaya.com/elmodocs2/security/ASA-2006-161.htmnvd
- www.debian.org/security/2006/dsa-1097nvd
- www.debian.org/security/2006/dsa-1103nvd
- www.mandriva.com/security/advisoriesnvd
- www.novell.com/linux/security/advisories/2006-05-31.htmlnvd
- www.osvdb.org/25633nvd
- www.redhat.com/support/errata/RHSA-2006-0493.htmlnvd
- www.securityfocus.com/bid/17910nvd
- www.trustix.org/errata/2006/0026nvd
- www.ubuntu.com/usn/usn-302-1nvd
- www.vupen.com/english/advisories/2006/1734nvd
- www.vupen.com/english/advisories/2006/2554nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/26431nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11243nvd
News mentions
0No linked articles in our index yet.