Bug#322339: CAN-2004-2302: Race condition allows DoS through large offsets in sysfs files

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: Bug#322339: CAN-2004-2302: Race condition allows DoS through large offsets in sysfs files
From: Moritz Muehlenhoff <jmm@inutil.org>
Date: Wed, 10 Aug 2005 11:53:00 +0200
Message-id: <[🔎] E1E2nGe-0001Uk-K8@localhost.localdomain>
Reply-to: Moritz Muehlenhoff <jmm@inutil.org>, 322339@bugs.debian.org

Package: kernel-source-2.6.8
Severity: important
Tags: security patch

CAN-2004-2302 describes a kernel DoS through a race condition, that can be triggered
by overly long sysfs offsets. Please see 
http://linux.bkbits.net:8080/linux-2.6/cset%404186a4deVoR88JjTwMa3ZnIp-_YJsA
for description and a patch. 2.4 doesn't seem to use sysfs and it should already be
fixed in 2.6.12.

Cheers,
        Moritz

-- System Information:
Debian Release: testing/unstable
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: i386 (i686)
Shell:  /bin/sh linked to /bin/bash
Kernel: Linux 2.6.12-rc5
Locale: LANG=C, LC_CTYPE=de_DE.ISO-8859-15@euro (charmap=ISO-8859-15)

Reply to:

Follow-Ups:
- Bug#322339: CAN-2004-2302: Race condition allows DoS through large offsets in sysfs files
  - From: Horms <horms@debian.org>
- Bug#322339: CAN-2004-2302: Race condition allows DoS through large offsets in sysfs files
  - From: Horms <horms@debian.org>

Prev by Date: Re: Bug#321964: linux-2.6: package that depends on all -headers for $arch
Next by Date: Bug#322237: kernel-image-2.6.8-11-amd64-k8-smp: [PATCH] Panic on ipt_recent - 32bitism
Previous by thread: Bug#67718: Thank you for your loan request
Next by thread: Bug#322339: CAN-2004-2302: Race condition allows DoS through large offsets in sysfs files
Index(es):
- Date
- Thread