oss-sec mailing list archives

Re: CVE-Request -- Linux kernel - panic on nftables rule flush

From: Florian Weimer <fweimer () redhat com>
Date: Tue, 10 Feb 2015 13:12:15 +0100

On 02/10/2015 07:42 AM, Wade Mealing wrote:

Gday,

I'd like to request a CVE for a denial of service attack found here here 
https://bugzilla.kernel.org/show_bug.cgi?id=91441.

A remote attacker with the NET_CAP_ADMIN capability could use this to panic (denial of service) a system if they were 
able to flush a chain with a jump target.

More info: https://bugzilla.redhat.com/show_bug.cgi?id=1190966


This should “A local attacker with the CAP_NET_ADMIN capability".

-- 
Florian Weimer / Red Hat Product Security

Current thread:

CVE-Request -- Linux kernel - panic on nftables rule flush Wade Mealing (Feb 09)
- Re: CVE-Request -- Linux kernel - panic on nftables rule flush Florian Weimer (Feb 10)
- Re: CVE-Request -- Linux kernel - panic on nftables rule flush cve-assign (Feb 10)