oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

Re: CVE Request: kernel -- local DOS (endless loop with interrupts disabled)

From: Kurt Seifried <kseifried () redhat com>
Date: Thu, 14 Feb 2013 22:06:51 -0700
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 02/14/2013 11:39 AM, Mathias Krause wrote:

Hi,

Eric Dumazet recently fixed a local DOS in commit 77c1090 "net:
fix infinite loop in __skb_recv_datagram()"? An unprivileged local
user can easily trigger this bug and lock-up the system.

A reproducer is attached.

Thanks, Mathias


Nice, I can confirm this works quite well on Fedora 18.

Please use CVE-2013-0290 for this issue.

- -- 
Kurt Seifried Red Hat Security Response Team (SRT)
PGP: 0x5E267993 A90B F995 7350 148F 66BF 7554 160D 4553 5E26 7993

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.13 (GNU/Linux)
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=TGRd
-----END PGP SIGNATURE-----
Previous By Date Next
Previous By Thread Next

Current thread: