oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Re: CVE request Linux Kernel: net: SCTP: NULL pointer dereference

From: Daniel Borkmann <dborkman () redhat com>
Date: Sat, 26 Jul 2014 11:12:35 +0200
On 07/26/2014 04:21 AM, cve-assign () mitre org wrote:
...

Use CVE-2014-5077 for this issue in the sctp_assoc_update function in
net/sctp/associola.c (not yet patched at
http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/tree/net/sctp/associola.c).


It's currently in the -net tree [1], I expect a pull request for
mainline to happen quite soon.

Cheers,

Daniel

  [1] http://git.kernel.org/cgit/linux/kernel/git/davem/net.git/commit/?id=1be9a950c646c9092fb3618197f7b6bfb50e82aa
Previous By Date Next
Previous By Thread Next

Current thread: