oss-sec mailing list archives

Re: CVE request: kernel: cfg80211: missing NULL pointer checks

From: Eugene Teo <eugene () redhat com>
Date: Mon, 17 Aug 2009 08:57:04 +0800

Eugene Teo wrote:

Jon Oberheide wrote:

On Fri, 2009-08-14 at 17:33 -0600, dann frazier wrote:

[...]

Also would be nice to get one for the cfg80211 issue:
http://patchwork.kernel.org/patch/41218/

Reproducer:
http://jon.oberheide.org/files/cfg80211-remote-dos.c


Thanks Jon.

"These pointers can be NULL, the is_mesh() case isn't ever hit in the
current kernel, but cmp_ies() can be hit under certain conditions."

Upstream commit:
http://git.kernel.org/linus/cd3468bad96c00b5a512f551674f36776129520e


It only affects the kernels v2.6.30-rc1 onwards. FYI.

Eugene

Current thread:

kernel issues pending CVE assignment dann frazier (Aug 14)
- Re: kernel issues pending CVE assignment Jon Oberheide (Aug 15)
  - CVE request: kernel: cfg80211: missing NULL pointer checks Eugene Teo (Aug 16)
    - Re: CVE request: kernel: cfg80211: missing NULL pointer checks Eugene Teo (Aug 16)
    - Re: CVE request: kernel: cfg80211: missing NULL pointer checks Steven M. Christey (Aug 18)