Bug#321401: CAN-2005-2456: Array index overflow in xfrm code

To: Moritz Muehlenhoff <jmm@inutil.org>, 321401@bugs.debian.org
Subject: Bug#321401: CAN-2005-2456: Array index overflow in xfrm code
From: Horms <horms@debian.org>
Date: Tue, 9 Aug 2005 15:03:19 +0900
Message-id: <[🔎] 20050809060318.GA1385@verge.net.au>
Reply-to: Horms <horms@debian.org>, 321401@bugs.debian.org
In-reply-to: <[🔎] 20050805095810.GK22149@verge.net.au>
References: <[🔎] E1E0yUA-0001bc-Uq@localhost.localdomain> <[🔎] 20050805095810.GK22149@verge.net.au>

On Fri, Aug 05, 2005 at 06:58:12PM +0900, Horms wrote:
> On Fri, Aug 05, 2005 at 11:27:26AM +0200, Moritz Muehlenhoff wrote:
> > Package: linux-2.6
> > Severity: important
> > Tags: security patch
> > 
> > An overflow in sock->sk_policy could possibly be exploited as DoS or
> > potential execution of arbitrary code. Please see
> > http://www.mail-archive.com/netdev@vger.kernel.org/msg00520.html
> > for details. A fix has been comitted into the git repo, please see
> > http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=a4f1bac62564049ea4718c4624b0fadc9f597c84
> > 
> > This has been assigned CAN-2005-2456.
> 
> Thanks, for Sarge 2.6.8 appears to be vulnerable,
> and 2.4.27 does not. I have applied the patch into
> SVN for 2.6.8.

Correction, 2.4.27 does seem vulnerable, I am fixing it now.

-- 
Horms

Reply to:

References:
- Bug#321401: CAN-2005-2456: Array index overflow in xfrm code
  - From: Moritz Muehlenhoff <jmm@inutil.org>
- Bug#321401: CAN-2005-2456: Array index overflow in xfrm code
  - From: Horms <horms@debian.org>

Prev by Date: Re: linux-2.6_2.6.12-2_i386.changes REJECTED
Next by Date: Bug#215980: DVD X Copy Platinum 4.0.38 - $19.95
Previous by thread: Bug#321401: CAN-2005-2456: Array index overflow in xfrm code
Next by thread: Bug#321401: marked as done (CAN-2005-2456: Array index overflow in xfrm code)
Index(es):
- Date
- Thread