CVE-2006-3745

Publication date 23 August 2006

Last updated 17 July 2025

Ubuntu priority

Description

Unspecified vulnerability in the sctp_make_abort_user function in the SCTP implementation in Linux 2.6.x before 2.6.17.10 and 2.4.23 up to 2.4.33 allows local users to cause a denial of service (panic) and possibly gain root privileges via unknown attack vectors.

Status

Show unmaintained releases

Package	Ubuntu Release	Status
linux-source-2.6.15	7.04 feisty	Not in release
	6.10 edgy	Not in release
	6.06 LTS dapper	Fixed 2.6.15-29.58
linux-source-2.6.17	7.04 feisty	Not in release
	6.10 edgy	Fixed 2.6.17.1-12.40
	6.06 LTS dapper	Not in release

How can I get the fixes?
What do statuses mean?

References

MITRE
NVD
Launchpad
Debian

Related Ubuntu Security Notices (USN)

USN-346-1
Linux kernel vulnerabilities
15 September 2006

Other references

https://www.cve.org/CVERecord?id=CVE-2006-3745