|
Message-ID: <511DC26B.4090102@redhat.com> Date: Thu, 14 Feb 2013 22:06:51 -0700 From: Kurt Seifried <kseifried@...hat.com> To: oss-security@...ts.openwall.com CC: Mathias Krause <minipli@...glemail.com>, Eric Dumazet <edumazet@...gle.com>, "David S. Miller" <davem@...emloft.net>, Brad Spengler <spender@...ecurity.net> Subject: Re: CVE Request: kernel -- local DOS (endless loop with interrupts disabled) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 02/14/2013 11:39 AM, Mathias Krause wrote: > Hi, > > Eric Dumazet recently fixed a local DOS in commit 77c1090 "net: > fix infinite loop in __skb_recv_datagram()"? An unprivileged local > user can easily trigger this bug and lock-up the system. > > A reproducer is attached. > > Thanks, Mathias Nice, I can confirm this works quite well on Fedora 18. Please use CVE-2013-0290 for this issue. - -- Kurt Seifried Red Hat Security Response Team (SRT) PGP: 0x5E267993 A90B F995 7350 148F 66BF 7554 160D 4553 5E26 7993 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.13 (GNU/Linux) iQIcBAEBAgAGBQJRHcJrAAoJEBYNRVNeJnmTkWIQAKwGNealGpHBZ3r4R717eQCt 6QKhFbc+pdj04VAC9bhZA1Yeszphqh9pgQI3NHukaNHQ7xzyK50nKO3r2lo4Khgh Ox5Fb4FtfmiCnFFM+YopFHQI6UAzSa+Ue0TOP/1Npkb6AcuwZjx2Cb0X7obwCtr6 APp2bXDXlPzOBpjO9Pu9xjXtyVQOATRvtKqfijTFv2iChNF2Di2i+L8IAZ6IrNkl YN+eLXbHBr3qSyUnvyHagrqr6YGvLhq8q3yb6JxhqDrQ5EFy+iVlbNIYpE3Vlc9R 2QSyGnsY2D9GZWC+M0dMz+boNUIIO/vhNJgp5BteV2FZ5hBqOPYbTmBSF4rwOkWv YsegcsuyvikLZSOsSCFqnn2/PIvw9sK+mw7xZjXGPVyhM9X/r3BatHeJTRgmlq8b qgiJ8Hc/G3VUTL4/0TkTgCSocpOGAvP1vuIGtwqHnuBjLrI6gDnJgo6/tYeLzaNP sMSMqgPjSBTHECBw0IxCqY7GJLCK1j6FD3IfzSMAZZ/MuRrfXIap9WNaxjGMwfUk Z5/uK0rqwQaf4eB7vm8aHKltX/bVj1ZVxXaG1+T1plkiQMo0KtGJqyEpA1+0xx0f 5wQMHyvcqn41WVKTzcRDjAZyIvM/2vZm+Ly7Ntzu/EWe74HcSUmI8b1eAJmfO4y6 PhD2jRd+YaOBNxMo9IDW =TGRd -----END PGP SIGNATURE-----
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.