Linux Kernel SCTP UDP Port Handling Vulnerability Leading to General Protection Fault

A vulnerability in the Linux kernel's handling of SCTP over UDP has been addressed. The issue arose because calls to stop and start the SCTP UDP socket were not properly synchronized, potentially leading to a crash. This vulnerability was reported by syzbot, which encountered a general protection fault related to a null pointer dereference, indicating a serious issue that could be exploited under certain conditions.

Impact

Exploitation of this vulnerability could lead to a general protection fault, causing a crash by dereferencing a null pointer. Such a crash can disrupt system operations and potentially be exploited to execute arbitrary code, depending on the context.

Reproduction

The vulnerability can be reproduced by triggering a race condition in the handling of SCTP UDP sockets. This can be done by rapidly starting and stopping the SCTP UDP socket operations, which may lead to a crash by causing a null pointer dereference.