oss-sec mailing list archives
Re: CVE request: kernel: cfg80211: missing NULL pointer checks
From: Eugene Teo <eugene () redhat com>
Date: Mon, 17 Aug 2009 08:57:04 +0800
Eugene Teo wrote:
Jon Oberheide wrote:On Fri, 2009-08-14 at 17:33 -0600, dann frazier wrote:[...]Also would be nice to get one for the cfg80211 issue: http://patchwork.kernel.org/patch/41218/ Reproducer: http://jon.oberheide.org/files/cfg80211-remote-dos.cThanks Jon. "These pointers can be NULL, the is_mesh() case isn't ever hit in the current kernel, but cmp_ies() can be hit under certain conditions." Upstream commit: http://git.kernel.org/linus/cd3468bad96c00b5a512f551674f36776129520e
It only affects the kernels v2.6.30-rc1 onwards. FYI. Eugene
Current thread:
- kernel issues pending CVE assignment dann frazier (Aug 14)
- Re: kernel issues pending CVE assignment Jon Oberheide (Aug 15)
- CVE request: kernel: cfg80211: missing NULL pointer checks Eugene Teo (Aug 16)
- Re: CVE request: kernel: cfg80211: missing NULL pointer checks Eugene Teo (Aug 16)
- Re: CVE request: kernel: cfg80211: missing NULL pointer checks Steven M. Christey (Aug 18)
- CVE request: kernel: cfg80211: missing NULL pointer checks Eugene Teo (Aug 16)
- Re: kernel issues pending CVE assignment Jon Oberheide (Aug 15)