[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: CVE-2005-2973: Yet another kernel DoS



On Mon, Oct 24, 2005 at 11:29:48AM -0600, dann frazier wrote:
> On Mon, 2005-10-24 at 10:28 +0200, Moritz Muehlenhoff wrote:
> > Hi,
> > an infinite loop in udp_v6_get_port() can be triggered and thus result in
> > local DoS. Please see https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=170772
> > for a link to a patch by davem. This is CVE-2005-2973.
> 
> I've added this to svn as
> people/horms/patch_notes/cve/net-ipv6-udp_v6_get_port-loop.patch, and
> symlinked as CAN-2005-2973 for tracking.
> 
> Horms: I realize you might be somewhat out of the loop as to how we're
> abusing your directory tree; I'll catch you on IRC when you're back to
> explain in detail.

I've made a few updates, putting this tree in the non-security 2.4.27 
and 2.6.8 branches, and submitting it for inclusion in 2.4.32-rc2


-- 
Horms



Reply to: