oss-sec mailing list archives

Re: CVE request for a fixed bug existed in all versions of linux kernel from KeenTeam

From: Vasily Kulikov <segoon () openwall com>
Date: Wed, 6 May 2015 18:43:53 +0300

Hi,

On Sat, May 02, 2015 at 15:53 +0300, Solar Designer wrote:

On Sat, May 02, 2015 at 06:31:12PM +0800, Wen Xu wrote:

The bug exists in all versions of linux kernel.


"All" as in "all upstream versions that contain the feature at all
(3.0+), and likely some backports".  It appears the bug got introduced
in Vasily's forward-porting of the functionality to newer 2.6.x kernels
before it finally got merged in this thread:

https://lkml.org/lkml/2011/5/13/382


I confirm this bug was introduced during forward-porting of the ICMP
patch to the upstream kernel.  The bug is not present in Owl's version
of the patch.

Thanks,

-- 
Vasily Kulikov
http://www.openwall.com - bringing security into open computing environments

Current thread:

CVE request for a fixed bug existed in all versions of linux kernel from KeenTeam Wen Xu (May 02)
- Re: CVE request for a fixed bug existed in all versions of linux kernel from KeenTeam Solar Designer (May 02)
  - Re: CVE request for a fixed bug existed in all versions of linux kernel from KeenTeam Wen Xu (May 02)
    - Re: CVE request for a fixed bug existed in all versions of linux kernel from KeenTeam Solar Designer (May 02)
  - Re: CVE request for a fixed bug existed in all versions of linux kernel from KeenTeam Vasily Kulikov (May 06)
  - Linux kernel pointer poisoning (was: CVE request for a fixed bug existed in all versions of linux kernel from KeenTeam) Vasily Kulikov (May 07)
    - Re: Linux kernel pointer poisoning (was: CVE request for a fixed bug existed in all versions of linux kernel from KeenTeam) Vasily Kulikov (May 07)
- Re: CVE request for a fixed bug existed in all versions of linux kernel from KeenTeam cve-assign (May 02)