Bug#321401: CAN-2005-2456: Array index overflow in xfrm code

To: Moritz Muehlenhoff <jmm@inutil.org>, 321401@bugs.debian.org
Subject: Bug#321401: CAN-2005-2456: Array index overflow in xfrm code
From: Horms <horms@debian.org>
Date: Fri, 5 Aug 2005 18:58:12 +0900
Message-id: <[🔎] 20050805095810.GK22149@verge.net.au>
Reply-to: Horms <horms@debian.org>, 321401@bugs.debian.org
In-reply-to: <[🔎] E1E0yUA-0001bc-Uq@localhost.localdomain>
References: <[🔎] E1E0yUA-0001bc-Uq@localhost.localdomain>

On Fri, Aug 05, 2005 at 11:27:26AM +0200, Moritz Muehlenhoff wrote:
> Package: linux-2.6
> Severity: important
> Tags: security patch
> 
> An overflow in sock->sk_policy could possibly be exploited as DoS or
> potential execution of arbitrary code. Please see
> http://www.mail-archive.com/netdev@vger.kernel.org/msg00520.html
> for details. A fix has been comitted into the git repo, please see
> http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=a4f1bac62564049ea4718c4624b0fadc9f597c84
> 
> This has been assigned CAN-2005-2456.

Thanks, for Sarge 2.6.8 appears to be vulnerable,
and 2.4.27 does not. I have applied the patch into
SVN for 2.6.8.

-- 
Horms

Reply to:

Follow-Ups:
- Bug#321401: CAN-2005-2456: Array index overflow in xfrm code
  - From: Horms <horms@debian.org>

References:
- Bug#321401: CAN-2005-2456: Array index overflow in xfrm code
  - From: Moritz Muehlenhoff <jmm@inutil.org>

Prev by Date: Bug#321403: 8139too network driver won't work with my card (it did with 2.6.8)
Next by Date: Bug#321409: hda: dma_timer_expiry: dma status == 0x21
Previous by thread: Bug#321401: CAN-2005-2456: Array index overflow in xfrm code
Next by thread: Bug#321401: CAN-2005-2456: Array index overflow in xfrm code
Index(es):
- Date
- Thread