Contents of /retired/CVE-2010-3705

Candidate: CVE-2010-3705
Description:
 sctp out-of-bounds issue
References:
 http://marc.info/?l=linux-kernel&m=128596992418814&w=2
 http://git.kernel.org/?p=linux/kernel/git/davem/net-2.6.git;a=commitdiff;h=51e97a12bef19b7e43199fc153cf9bd5f2140362
Notes:
 jmm> Submitted for stable 2011-01-06
Bugs:
upstream: released (2.6.36) [51e97a12bef19b7e43199fc153cf9bd5f2140362]
2.6.32-upstream-stable: released (2.6.32.30)
linux-2.6: released (2.6.32-25) [bugfix/all/sctp-fix-out-of-bounds-reading-in-sctp_assoc_get_hmac.patch]
2.6.26-lenny-security: released (2.6.26-26lenny1) [bugfix/all/sctp-fix-out-of-bounds-reading-in-sctp_asoc_get_hmac.patch]
2.6.32-squeeze-security: released (2.6.32-25) [bugfix/all/sctp-fix-out-of-bounds-reading-in-sctp_assoc_get_hmac.patch]
1	Candidate: CVE-2010-3705
2	Description:
3	sctp out-of-bounds issue
4	References:
5	http://marc.info/?l=linux-kernel&m=128596992418814&w=2
6	http://git.kernel.org/?p=linux/kernel/git/davem/net-2.6.git;a=commitdiff;h=51e97a12bef19b7e43199fc153cf9bd5f2140362
7	Notes:
8	jmm> Submitted for stable 2011-01-06
9	Bugs:
10	upstream: released (2.6.36) [51e97a12bef19b7e43199fc153cf9bd5f2140362]
11	2.6.32-upstream-stable: released (2.6.32.30)
12	linux-2.6: released (2.6.32-25) [bugfix/all/sctp-fix-out-of-bounds-reading-in-sctp_assoc_get_hmac.patch]
13	2.6.26-lenny-security: released (2.6.26-26lenny1) [bugfix/all/sctp-fix-out-of-bounds-reading-in-sctp_asoc_get_hmac.patch]
14	2.6.32-squeeze-security: released (2.6.32-25) [bugfix/all/sctp-fix-out-of-bounds-reading-in-sctp_assoc_get_hmac.patch]