** Description changed: - Linux kernel: net: sctp: ipv6 ipsec encryption bug in sctp_v6_xmit + The IPv6 SCTP implementation in net/sctp/ipv6.c in the Linux kernel + through 3.11.1 uses data structures and function calls that do not + trigger an intended configuration of IPsec encryption, which allows + remote attackers to obtain sensitive information by sniffing the + network. Break-Fix: - 95ee62083cb6453e056562d91f597552021e6ae7
-- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1226497 Title: CVE-2013-4350 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1226497/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
