Bug#302705: CAN-2005-0749: Potential DOS in elf_load_library()

To: Moritz Muehlenhoff <jmm@inutil.org>, 302705@bugs.debian.org
Cc: Debian Bug Tracking System <control@bugs.debian.org>
Subject: Bug#302705: CAN-2005-0749: Potential DOS in elf_load_library()
From: Horms <horms@debian.org>
Date: Mon, 4 Apr 2005 11:06:20 +0900
Message-id: <[🔎] 20050404020618.GF11182@verge.net.au>
Reply-to: Horms <horms@debian.org>, 302705@bugs.debian.org
In-reply-to: <[🔎] E1DHiI5-0004Ge-QT@localhost.localdomain>
References: <[🔎] E1DHiI5-0004Ge-QT@localhost.localdomain>

tags 30270 +pending
thanks

On Sat, Apr 02, 2005 at 03:03:53PM +0200, Moritz Muehlenhoff wrote:
> Package: kernel-source-2.4.27
> Severity: important
> Tags: security
> 
> Yichen Xie found out that load_elf_library can modify `elf_phdata' before
> freeing it, resulting in a local Denial-of-Service vulnerability.
> 
> A fix is available at:
> http://linux.bkbits.net:8080/linux-2.4/gnupatch@4244930dPN44h62CZtM0P-qXoOI-7A

Thanks, this fix is in SVN.

Do you know if it has a CAN number assigned, I have been unable to find one?

-- 
Horms

Reply to:

Follow-Ups:
- Bug#302705: CAN-2005-0749: Potential DOS in elf_load_library()
  - From: Joey Hess <joeyh@debian.org>
- Bug#302705: CAN-2005-0749: Potential DOS in elf_load_library()
  - From: Moritz Muehlenhoff <jmm@inutil.org>

References:
- Bug#302705: CAN-2005-0749: Potential DOS in elf_load_library()
  - From: Moritz Muehlenhoff <jmm@inutil.org>

Prev by Date: Processed: Re: Bug#302704: CAN-2005-0750: Possible local root exploit through insufficient range checking in af_bluetooth
Next by Date: Bug#302704: CAN-2005-0750: Possible local root exploit through insufficient range checking in af_bluetooth
Previous by thread: Bug#302705: CAN-2005-0749: Potential DOS in elf_load_library()
Next by thread: Bug#302705: CAN-2005-0749: Potential DOS in elf_load_library()
Index(es):
- Date
- Thread