oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

Re: CVE-2011-0714 kernel: deficiency in handling of invalid data packets in lockd

From: Eugene Teo <eugene () redhat com>
Date: Wed, 09 Mar 2011 08:57:18 +0800
On 03/09/2011 03:41 AM, Petr Matousek wrote:

Hello,

Josh Bressers has assigned a CVE id CVE-2011-0714 to the following bug:

"It was found that lockd did not properly handle data packets that contained
invalid data. This could be possibly exploited by remote user to crash the
server (DoS)."

Please note that this issue only affects Red Hat Enterprise Linux 6 as a
result of an incomplete upstream commit backport.

References:
https://bugzilla.redhat.com/show_bug.cgi?id=678144


http://rhn.redhat.com/errata/RHSA-2011-0329.html

Eugene
--
main(i) { putchar(182623909 >> (i-1) * 5&31|!!(i<7)<<6) && main(++i); }
Previous By Date Next
Previous By Thread Next

Current thread: