oss-sec mailing list archives

Re: CVE Request: Linux kernel net/rds max socket length checking

From: Petr Matousek <pmatouse () redhat com>
Date: Mon, 6 Aug 2012 10:07:41 +0200

On Mon, Aug 06, 2012 at 09:48:50AM +0200, Marcus Meissner wrote:

Hi,

Kernel memory information leak in the RDS protocol.
(commit also has a testcase)

https://git.kernel.org/?p=linux/kernel/git/torvalds/linux.git;a=commitdiff;h=06b6a1cf6e776426766298d055bb3991957d90a7


CVE id has been already assigned (CVE-2012-3430).

See post with Message-ID: <20120726152511.GN12159 () dhcp-25-225 brq redhat com>@oss-security.

-- 
Petr Matousek / Red Hat Security Response Team

Current thread:

CVE Request: Linux kernel net/rds max socket length checking Marcus Meissner (Aug 06)
- Re: CVE Request: Linux kernel net/rds max socket length checking Petr Matousek (Aug 06)