oss-sec mailing list archives
CVE Request: Linux: signed overflows for SO_{SND|RCV}BUFFORCE
From: Andrey Konovalov <andreyknvl () google com>
Date: Sat, 3 Dec 2016 00:29:12 +0100
Hi! There's a bug in SO_{SND|RCV}BUFFORCE setsockopt() implementation, which allows CAP_NET_ADMIN users to cause memory corruption. The fix is upstream: https://github.com/torvalds/linux/commit/b98b0bc8c431e3ceb4b26b0dfc8db509518fb290 Could you assign a CVE for this? Thanks!
Current thread:
- CVE Request: Linux: signed overflows for SO_{SND|RCV}BUFFORCE Andrey Konovalov (Dec 02)
- Re: CVE Request: Linux: signed overflows for SO_{SND|RCV}BUFFORCE cve-assign (Dec 02)