Bug#322339: CAN-2004-2302: Race condition allows DoS through large offsets in sysfs files

To: Moritz Muehlenhoff <jmm@inutil.org>, 322339@bugs.debian.org
Cc: Debian Bug Tracking System <control@bugs.debian.org>
Subject: Bug#322339: CAN-2004-2302: Race condition allows DoS through large offsets in sysfs files
From: Horms <horms@debian.org>
Date: Thu, 11 Aug 2005 17:04:08 +0900
Message-id: <[🔎] 20050811080406.GA14427@verge.net.au>
Reply-to: Horms <horms@debian.org>, 322339@bugs.debian.org
In-reply-to: <[🔎] E1E2nGe-0001Uk-K8@localhost.localdomain>
References: <[🔎] E1E2nGe-0001Uk-K8@localhost.localdomain>

tags  322339 +pending
thanks

On Wed, Aug 10, 2005 at 11:53:00AM +0200, Moritz Muehlenhoff wrote:
> Package: kernel-source-2.6.8
> Severity: important
> Tags: security patch
> 
> CAN-2004-2302 describes a kernel DoS through a race condition, that can be triggered
> by overly long sysfs offsets. Please see 
> http://linux.bkbits.net:8080/linux-2.6/cset%404186a4deVoR88JjTwMa3ZnIp-_YJsA
> for description and a patch. 2.4 doesn't seem to use sysfs and it should already be
> fixed in 2.6.12.

Thanks,

I have backported and added this to SVN for 2.6.8.
Neither 2.6.12 nor 2.4.27 seem vulnerable to me either.

-- 
Horms

Reply to:

Follow-Ups:
- Processed: Re: Bug#322339: CAN-2004-2302: Race condition allows DoS through large offsets in sysfs files
  - From: owner@bugs.debian.org (Debian Bug Tracking System)

References:
- Bug#322339: CAN-2004-2302: Race condition allows DoS through large offsets in sysfs files
  - From: Moritz Muehlenhoff <jmm@inutil.org>

Prev by Date: Re: Bug#322205: udev: vol_id crashes on usb storage device
Next by Date: Processed: Re: Bug#322339: CAN-2004-2302: Race condition allows DoS through large offsets in sysfs files
Previous by thread: Bug#322339: CAN-2004-2302: Race condition allows DoS through large offsets in sysfs files
Next by thread: Processed: Re: Bug#322339: CAN-2004-2302: Race condition allows DoS through large offsets in sysfs files
Index(es):
- Date
- Thread