oss-sec mailing list archives
Re: Re: CVE request Linux Kernel: net: SCTP: NULL pointer dereference
From: Daniel Borkmann <dborkman () redhat com>
Date: Sat, 26 Jul 2014 11:12:35 +0200
On 07/26/2014 04:21 AM, cve-assign () mitre org wrote: ...
Use CVE-2014-5077 for this issue in the sctp_assoc_update function in net/sctp/associola.c (not yet patched at http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/tree/net/sctp/associola.c).
It's currently in the -net tree [1], I expect a pull request for mainline to happen quite soon. Cheers, Daniel [1] http://git.kernel.org/cgit/linux/kernel/git/davem/net.git/commit/?id=1be9a950c646c9092fb3618197f7b6bfb50e82aa
Current thread:
- CVE request Linux Kernel: net: SCTP: NULL pointer dereference P J P (Jul 24)
- Re: CVE request Linux Kernel: net: SCTP: NULL pointer dereference cve-assign (Jul 25)
- Re: Re: CVE request Linux Kernel: net: SCTP: NULL pointer dereference Daniel Borkmann (Jul 26)
- Re: CVE request Linux Kernel: net: SCTP: NULL pointer dereference cve-assign (Jul 25)