oss-sec mailing list archives

CVE Request: Linux: Remote crash via batman-adv module

From: Salvatore Bonaccorso <carnil () debian org>
Date: Wed, 31 Dec 2014 17:14:15 +0100

Hi

It was reported on the netdev mailing list[1] and in the Debian
bugtracker[2] that linux could crash when using the batman-adv module,
see also [3]. The bug was introduced in [4], in 3.13-rc1, and a fix
recently merged in [5] (sheduled for 3.19).

Could you please assign a CVE for this issue?

References:

 [1] http://thread.gmane.org/gmane.linux.network/343494
 [2] https://bugs.debian.org/774155
 [3] https://lists.open-mesh.org/pipermail/b.a.t.m.a.n/2014-November/012561.html
 [4] 
https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=610bfc6bc99bc83680d190ebc69359a05fc7f605 
(v3.13-rc1)
 [5] https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=5b6698b0e4a37053de35cc24ee695b98a7eb712b

Regards,
Salvatore

Current thread:

CVE Request: Linux: Remote crash via batman-adv module Salvatore Bonaccorso (Dec 31)
- Re: CVE Request: Linux: Remote crash via batman-adv module - Linux kernel cve-assign (Dec 31)