oss-sec mailing list archives

Re: CVE-2011-4110 kernel: keys: NULL pointer deref in the user-defined key type

From: Eugene Teo <eugene () redhat com>
Date: Tue, 22 Nov 2011 10:49:16 +0800

On 11/22/2011 05:26 AM, Kurt Seifried wrote:

On 11/21/2011 10:51 AM, Petr Matousek wrote:

There is a NULL pointer deref in the user-defined key type whereby
updating a negative key into a fully instantiated key will cause
an oops to occur when the code attempts to free the non-existent
old payload.

Upstream commit:
9f35a33b8d06263a165efe3541d9aa0cdbd70b3b

References:
https://lkml.org/lkml/2011/11/15/363
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-4110

Thanks,

Please use CVE-2011-4331 for this issue.


Kurt, we have assigned this with CVE-2011-4110, please reject
CVE-2011-4331. Thanks.

Eugene

Current thread:

CVE-2011-4110 kernel: keys: NULL pointer deref in the user-defined key type Petr Matousek (Nov 21)
- Re: CVE-2011-4110 kernel: keys: NULL pointer deref in the user-defined key type Kurt Seifried (Nov 21)
  - Re: CVE-2011-4110 kernel: keys: NULL pointer deref in the user-defined key type Eugene Teo (Nov 21)
  - Re: CVE-2011-4110 kernel: keys: NULL pointer deref in the user-defined key type Kurt Seifried (Nov 21)