关键漏洞信息 漏洞ID: Bug 1420276 CVE-2017-5986 摘要: kernel: Reachable BUG_ON from userspace in sctp_wait_for_sndbuf 状态: CLOSED ERRATA 产品和组件: Product: Security Response Component: vulnerability 优先级与严重性: Priority: medium Severity: medium 影响版本: Earlier than Linux kernel version v4.10-rc8 漏洞描述: An application may trigger a BUG_ON in sctp_wait_for_sndbuf if the socket tx buffer is full, a thread is waiting on it to queue more data, and meanwhile another thread peels off the association being used by the first thread. 补丁与更新: Upstream patches have been provided [https://github.com/torvalds/linux/commit/2dcab598484185dea7ec22219c76dcdd59e3cb90] -kernel-4.9.9-100.fc24 has been pushed to the Fedora 24 stable repository. 影响的系统: Red Hat Enterprise Linux 5, 6, 7 and MRG-2 其他信息: Potential impact on systems running multiple containers due to this flaw.