oss-sec mailing list archives
Re: CVE request: Linux kernel: panic while appending data to a corked IPv6 socket in ip6_append_data_mtu
From: Seth Arnold <seth.arnold () canonical com>
Date: Tue, 23 Jul 2013 12:49:54 -0700
On Wed, Jul 24, 2013 at 01:06:38AM +0530, P J P wrote:
Hi, Linux kernel built with the IPv6 networking support is vulnerable to a crash while appending data to an IPv6 socket with UDP_CORKED option set. UDP_CORK
UDP_CORKED? I don't see this string in my /usr/include/ or recent Linux git tree. Am I missing something? Thanks
enables accumulating data and sending it as single datagram. An unprivileged user/program could use this flaw to crash the kernel, resulting in local DoS. Upstream fix: ------------- -> https://git.kernel.org/linus/75a493e60ac4bbe2e977e7129d6d8cbb0dd236be Reference: ---------- -> https://bugzilla.redhat.com/show_bug.cgi?id=987633
Attachment:
signature.asc
Description: Digital signature
Current thread:
- CVE request: Linux kernel: panic while appending data to a corked IPv6 socket in ip6_append_data_mtu P J P (Jul 23)
- Re: CVE request: Linux kernel: panic while appending data to a corked IPv6 socket in ip6_append_data_mtu Seth Arnold (Jul 23)
- Re: CVE request: Linux kernel: panic while appending data to a corked IPv6 socket in ip6_append_data_mtu Kurt Seifried (Jul 23)