[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: [SECURITY] [DSA 1575-1] New Linux 2.6.18 packages fix denial of service

On Mon, May 12, 2008 at 11:52:27PM +0100, Dominic Hargreaves wrote:
> On Mon, May 12, 2008 at 03:13:14PM -0600, dann frazier wrote:
> 
> > Vulnerability  : denial of service
> 
> > CVE-2008-1669
> > 
> >     Alexander Viro discovered a race condition in the fcntl code that
> >     may permit local users on multi-processor systems to execute parallel
> >     code paths that are otherwise prohibited and gain re-ordered access
> >     to the descriptor table.
> 
> Is there any reason this has been labelled as a DoS rather than an
> potential arbitrary code execution issue (which
> http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-1669 suggests it is) - eg
> are there mitigating circumstances in the Debian kernel?

hey Dominic,
 At the time I prepared this upload, I was under the impression that
this was a potential arbitrary code execution issue (with no known
exploit). However, while preparing the DSA I didn't find convincing
evidence that this was more than a DoS. I could of course be wrong,
and if I am I'll be happy to update the advisory.

> It seems odd that Debian would release a new kernel for a single
> DoS-only vulnerability.

Yes, normally local DoS fixes are queued up and released in batches.

-- 
dann frazier
Reply to: