{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/87661?format=json","vulnerability_id":"VCID-vwj3-5b6z-17b1","summary":"kernel: sctp: do not reset the packet during sctp_packet_config","aliases":[{"alias":"CVE-2010-3432"}],"fixed_packages":[],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/127657?format=json","purl":"pkg:rpm/redhat/kernel@2.6.9-89.33.1?arch=EL","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-8fkd-5ked-xyes"},{"vulnerability":"VCID-vwj3-5b6z-17b1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/kernel@2.6.9-89.33.1%3Farch=EL"},{"url":"http://public2.vulnerablecode.io/api/packages/127529?format=json","purl":"pkg:rpm/redhat/kernel@2.6.18-194.32.1?arch=el5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2m8w-7whg-jube"},{"vulnerability":"VCID-381s-khqd-muhz"},{"vulnerability":"VCID-3hpq-y376-k3cd"},{"vulnerability":"VCID-6x7p-5tt7-5fdv"},{"vulnerability":"VCID-8fkd-5ked-xyes"},{"vulnerability":"VCID-gwuw-j14j-dffw"},{"vulnerability":"VCID-m6hm-2cau-4fdg"},{"vulnerability":"VCID-nej4-chcw-fqah"},{"vulnerability":"VCID-q4p1-vxct-cybq"},{"vulnerability":"VCID-qx2w-etz4-kybx"},{"vulnerability":"VCID-t5zj-36y8-bbdt"},{"vulnerability":"VCID-ttz3-sqez-7ffq"},{"vulnerability":"VCID-v5g5-3pv6-dqa4"},{"vulnerability":"VCID-vwj3-5b6z-17b1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/kernel@2.6.18-194.32.1%3Farch=el5"},{"url":"http://public2.vulnerablecode.io/api/packages/127594?format=json","purl":"pkg:rpm/redhat/kernel@2.6.32-71.7.1?arch=el6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-229q-sxf7-8bgu"},{"vulnerability":"VCID-3vwf-bjs1-6bg9"},{"vulnerability":"VCID-4k1s-fghb-p3bb"},{"vulnerability":"VCID-5dmd-zwje-pqek"},{"vulnerability":"VCID-8fkd-5ked-xyes"},{"vulnerability":"VCID-fjh9-4gn3-6feg"},{"vulnerability":"VCID-nftw-r2j9-y7cp"},{"vulnerability":"VCID-pmch-au5t-2fh5"},{"vulnerability":"VCID-qnqy-k1r2-ckf5"},{"vulnerability":"VCID-ux7d-jpk1-7ubt"},{"vulnerability":"VCID-vwj3-5b6z-17b1"},{"vulnerability":"VCID-xcnp-gudk-3fec"},{"vulnerability":"VCID-xps7-6pp7-a3b6"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/kernel@2.6.32-71.7.1%3Farch=el6"},{"url":"http://public2.vulnerablecode.io/api/packages/127555?format=json","purl":"pkg:rpm/redhat/kernel-rt@2.6.33.7-rt29.47?arch=el5rt","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-22bx-f76m-e3c1"},{"vulnerability":"VCID-2m8w-7whg-jube"},{"vulnerability":"VCID-3egz-urd4-yfbw"},{"vulnerability":"VCID-519v-6b9u-dygr"},{"vulnerability":"VCID-5x5t-fnw6-kqea"},{"vulnerability":"VCID-643a-mvrh-bbap"},{"vulnerability":"VCID-8fkd-5ked-xyes"},{"vulnerability":"VCID-ashs-ew8u-qubr"},{"vulnerability":"VCID-f744-pabt-7ffu"},{"vulnerability":"VCID-fjh9-4gn3-6feg"},{"vulnerability":"VCID-j49x-d5sv-wkek"},{"vulnerability":"VCID-m6hm-2cau-4fdg"},{"vulnerability":"VCID-nej4-chcw-fqah"},{"vulnerability":"VCID-nq55-xn3b-8qdm"},{"vulnerability":"VCID-pmch-au5t-2fh5"},{"vulnerability":"VCID-pqms-kbb2-wua8"},{"vulnerability":"VCID-rdyv-juby-e3gq"},{"vulnerability":"VCID-t5zj-36y8-bbdt"},{"vulnerability":"VCID-v5g5-3pv6-dqa4"},{"vulnerability":"VCID-vwj3-5b6z-17b1"},{"vulnerability":"VCID-zwvt-5gfz-suda"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/kernel-rt@2.6.33.7-rt29.47%3Farch=el5rt"}],"references":[{"reference_url":"http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=4bdab43323b459900578b200a4b8cf9713ac8fab","reference_id":"","reference_type":"","scores":[],"url":"http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=4bdab43323b459900578b200a4b8cf9713ac8fab"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00000.html","reference_id":"","reference_type":"","scores":[],"url":"http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00000.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00000.html","reference_id":"","reference_type":"","scores":[],"url":"http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00000.html"},{"reference_url":"http://marc.info/?l=linux-netdev&m=128453869227715&w=3","reference_id":"","reference_type":"","scores":[],"url":"http://marc.info/?l=linux-netdev&m=128453869227715&w=3"},{"reference_url":"http://marc.info/?l=oss-security&m=128534569803598&w=2","reference_id":"","reference_type":"","scores":[],"url":"http://marc.info/?l=oss-security&m=128534569803598&w=2"},{"reference_url":"http://marc.info/?l=oss-security&m=128537701808336&w=2","reference_id":"","reference_type":"","scores":[],"url":"http://marc.info/?l=oss-security&m=128537701808336&w=2"},{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-3432.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-3432.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2010-3432","reference_id":"","reference_type":"","scores":[{"value":"0.04322","scoring_system":"epss","scoring_elements":"0.88944","published_at":"2026-04-29T12:55:00Z"},{"value":"0.04322","scoring_system":"epss","scoring_elements":"0.88856","published_at":"2026-04-01T12:55:00Z"},{"value":"0.04322","scoring_system":"epss","scoring_elements":"0.88865","published_at":"2026-04-02T12:55:00Z"},{"value":"0.04322","scoring_system":"epss","scoring_elements":"0.8888","published_at":"2026-04-04T12:55:00Z"},{"value":"0.04322","scoring_system":"epss","scoring_elements":"0.88882","published_at":"2026-04-07T12:55:00Z"},{"value":"0.04322","scoring_system":"epss","scoring_elements":"0.889","published_at":"2026-04-08T12:55:00Z"},{"value":"0.04322","scoring_system":"epss","scoring_elements":"0.88906","published_at":"2026-04-09T12:55:00Z"},{"value":"0.04322","scoring_system":"epss","scoring_elements":"0.88917","published_at":"2026-04-11T12:55:00Z"},{"value":"0.04322","scoring_system":"epss","scoring_elements":"0.88912","published_at":"2026-04-12T12:55:00Z"},{"value":"0.04322","scoring_system":"epss","scoring_elements":"0.88911","published_at":"2026-04-13T12:55:00Z"},{"value":"0.04322","scoring_system":"epss","scoring_elements":"0.88925","published_at":"2026-04-16T12:55:00Z"},{"value":"0.04322","scoring_system":"epss","scoring_elements":"0.88923","published_at":"2026-04-18T12:55:00Z"},{"value":"0.04322","scoring_system":"epss","scoring_elements":"0.8892","published_at":"2026-04-21T12:55:00Z"},{"value":"0.04322","scoring_system":"epss","scoring_elements":"0.88936","published_at":"2026-04-24T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2010-3432"},{"reference_url":"http://secunia.com/advisories/42400","reference_id":"","reference_type":"","scores":[],"url":"http://secunia.com/advisories/42400"},{"reference_url":"http://secunia.com/advisories/42778","reference_id":"","reference_type":"","scores":[],"url":"http://secunia.com/advisories/42778"},{"reference_url":"http://secunia.com/advisories/42789","reference_id":"","reference_type":"","scores":[],"url":"http://secunia.com/advisories/42789"},{"reference_url":"http://secunia.com/advisories/46397","reference_id":"","reference_type":"","scores":[],"url":"http://secunia.com/advisories/46397"},{"reference_url":"http://www.debian.org/security/2010/dsa-2126","reference_id":"","reference_type":"","scores":[],"url":"http://www.debian.org/security/2010/dsa-2126"},{"reference_url":"http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.35.6","reference_id":"","reference_type":"","scores":[],"url":"http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.35.6"},{"reference_url":"http://www.redhat.com/support/errata/RHSA-2010-0842.html","reference_id":"","reference_type":"","scores":[],"url":"http://www.redhat.com/support/errata/RHSA-2010-0842.html"},{"reference_url":"http://www.redhat.com/support/errata/RHSA-2010-0936.html","reference_id":"","reference_type":"","scores":[],"url":"http://www.redhat.com/support/errata/RHSA-2010-0936.html"},{"reference_url":"http://www.redhat.com/support/errata/RHSA-2010-0958.html","reference_id":"","reference_type":"","scores":[],"url":"http://www.redhat.com/support/errata/RHSA-2010-0958.html"},{"reference_url":"http://www.redhat.com/support/errata/RHSA-2011-0004.html","reference_id":"","reference_type":"","scores":[],"url":"http://www.redhat.com/support/errata/RHSA-2011-0004.html"},{"reference_url":"http://www.securityfocus.com/archive/1/520102/100/0/threaded","reference_id":"","reference_type":"","scores":[],"url":"http://www.securityfocus.com/archive/1/520102/100/0/threaded"},{"reference_url":"http://www.securityfocus.com/bid/43480","reference_id":"","reference_type":"","scores":[],"url":"http://www.securityfocus.com/bid/43480"},{"reference_url":"http://www.ubuntu.com/usn/USN-1000-1","reference_id":"","reference_type":"","scores":[],"url":"http://www.ubuntu.com/usn/USN-1000-1"},{"reference_url":"http://www.vmware.com/security/advisories/VMSA-2011-0012.html","reference_id":"","reference_type":"","scores":[],"url":"http://www.vmware.com/security/advisories/VMSA-2011-0012.html"},{"reference_url":"http://www.vupen.com/english/advisories/2010/3113","reference_id":"","reference_type":"","scores":[],"url":"http://www.vupen.com/english/advisories/2010/3113"},{"reference_url":"http://www.vupen.com/english/advisories/2011/0012","reference_id":"","reference_type":"","scores":[],"url":"http://www.vupen.com/english/advisories/2011/0012"},{"reference_url":"http://www.vupen.com/english/advisories/2011/0024","reference_id":"","reference_type":"","scores":[],"url":"http://www.vupen.com/english/advisories/2011/0024"},{"reference_url":"http://www.vupen.com/english/advisories/2011/0298","reference_id":"","reference_type":"","scores":[],"url":"http://www.vupen.com/english/advisories/2011/0298"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=637675","reference_id":"637675","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=637675"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*","reference_id":"cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:10.10:*:*:*:*:*:*:*","reference_id":"cpe:2.3:o:canonical:ubuntu_linux:10.10:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:10.10:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:*:*:*:*","reference_id":"cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:-:*:*:*","reference_id":"cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:-:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:-:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:9.04:*:*:*:*:*:*:*","reference_id":"cpe:2.3:o:canonical:ubuntu_linux:9.04:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:9.04:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:9.10:*:*:*:*:*:*:*","reference_id":"cpe:2.3:o:canonical:ubuntu_linux:9.10:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:9.10:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:5.0:*:*:*:*:*:*:*","reference_id":"cpe:2.3:o:debian:debian_linux:5.0:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:5.0:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","reference_id":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:11.3:*:*:*:*:*:*:*","reference_id":"cpe:2.3:o:opensuse:opensuse:11.3:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:11.3:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:linux_enterprise_real_time_extension:11:sp1:*:*:*:*:*:*","reference_id":"cpe:2.3:o:suse:linux_enterprise_real_time_extension:11:sp1:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:linux_enterprise_real_time_extension:11:sp1:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2010-3432","reference_id":"CVE-2010-3432","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:L/Au:N/C:N/I:N/A:C"}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2010-3432"},{"reference_url":"https://access.redhat.com/errata/RHSA-2010:0842","reference_id":"RHSA-2010:0842","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2010:0842"},{"reference_url":"https://access.redhat.com/errata/RHSA-2010:0936","reference_id":"RHSA-2010:0936","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2010:0936"},{"reference_url":"https://access.redhat.com/errata/RHSA-2010:0958","reference_id":"RHSA-2010:0958","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2010:0958"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0004","reference_id":"RHSA-2011:0004","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0004"},{"reference_url":"https://usn.ubuntu.com/1000-1/","reference_id":"USN-1000-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1000-1/"},{"reference_url":"https://usn.ubuntu.com/1074-1/","reference_id":"USN-1074-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1074-1/"},{"reference_url":"https://usn.ubuntu.com/1074-2/","reference_id":"USN-1074-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1074-2/"},{"reference_url":"https://usn.ubuntu.com/1083-1/","reference_id":"USN-1083-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1083-1/"},{"reference_url":"https://usn.ubuntu.com/1093-1/","reference_id":"USN-1093-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1093-1/"}],"weaknesses":[{"cwe_id":228,"name":"Improper Handling of Syntactically Invalid Structure","description":"The product does not handle or incorrectly handles input that is not syntactically well-formed with respect to the associated specification."},{"cwe_id":119,"name":"Improper Restriction of Operations within the Bounds of a Memory Buffer","description":"The product performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer."},{"cwe_id":20,"name":"Improper Input Validation","description":"The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly."}],"exploits":[],"severity_range_score":"7.8 - 7.8","exploitability":"0.5","weighted_severity":"7.0","risk_score":3.5,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vwj3-5b6z-17b1"}