oss-sec mailing list archives

CVE Request -- kernel: net: divide by zero in tcp algorithm illinois

From: Petr Matousek <pmatouse () redhat com>
Date: Wed, 31 Oct 2012 15:31:20 +0100

Description of the problem:
Reading TCP stats when using TCP Illinois congestion control algorithm
can cause a divide by zero kernel oops.

An unprivileged local user could use this flaw to crash the system.

Proposed upstream patch:
http://thread.gmane.org/gmane.linux.network/247871

Acknowledgements:

This issue was discovered by Rodrigo Freire of Red Hat.

References:
https://bugzilla.redhat.com/show_bug.cgi?id=871848
http://thread.gmane.org/gmane.linux.network/247871

Thanks,
-- 
Petr Matousek / Red Hat Security Response Team

Current thread:

CVE Request -- kernel: net: divide by zero in tcp algorithm illinois Petr Matousek (Oct 31)
- Re: CVE Request -- kernel: net: divide by zero in tcp algorithm illinois Kurt Seifried (Oct 31)