Bug#299865: CAN-2005-0736: Boundary condition error in sys_epoll_wait

To: Geoff Crompton <geoffc@strategicdata.com.au>, 299865@bugs.debian.org
Subject: Bug#299865: CAN-2005-0736: Boundary condition error in sys_epoll_wait
From: Joey Hess <joeyh@debian.org>
Date: Thu, 17 Mar 2005 10:59:17 -0500
Message-id: <[🔎] 20050317155916.GA17699@kitenet.net>
Reply-to: Joey Hess <joeyh@debian.org>, 299865@bugs.debian.org
In-reply-to: <[🔎] 20050317003158.4EE43C000D65@sd01.mel.strategicdata.com.au>
References: <[🔎] 20050317003158.4EE43C000D65@sd01.mel.strategicdata.com.au>

Geoff Crompton wrote:
> Package: kernel-source-2.6.8
> Version: 2.6.8-13
> Severity: critical
> Justification: root security hole
> 
> There is a local integer overflow vulnerability in the sys_epoll_wait()
> call. See following for detail:
> http://www.securityfocus.com/bid/12763/
> 
> Apologies if already reported.

This was already fixed in 2.6.8-14, although AFAIK we've get to get
the kernel-images built from it.

-- 
see shy jo

Attachment: signature.asc
Description: Digital signature

Reply to:

References:
- Bug#299865: CAN-2005-0736: Boundary condition error in sys_epoll_wait
  - From: "Geoff Crompton" <geoffc@strategicdata.com.au>

Prev by Date: Bug#299567: lots o space
Next by Date: Bug#299875: ppp: out-of-memory 30min after "LCP terminated by peer"
Previous by thread: Bug#299865: marked as done (CAN-2005-0736: Boundary condition error in sys_epoll_wait)
Next by thread: Bug#276109: marked as done (kernel-image-2.4.27-1-k7: oops with NFS)
Index(es):
- Date
- Thread