[kernel-sec-discuss] r620 - active
Martin Pitt
mpitt at costa.debian.org
Thu Oct 26 12:40:06 UTC 2006
Author: mpitt
Date: 2006-10-26 12:40:05 +0000 (Thu, 26 Oct 2006)
New Revision: 620
Added:
active/CVE-2006-5158
Log:
add CVE-2006-5158
Added: active/CVE-2006-5158
===================================================================
--- active/CVE-2006-5158 (rev 0)
+++ active/CVE-2006-5158 2006-10-26 12:40:05 UTC (rev 620)
@@ -0,0 +1,24 @@
+Candidate: CVE-2006-5158
+References:
+ http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=9b5b1f5bf9dcdb6f23abf65977a675eb4deba3c0
+Description:
+ The nlmclnt_mark_reclaim in clntlock.c in NFS lockd in Linux kernel
+ before 2.6.16 allows remote attackers to cause a denial of service
+ (process crash) and deny access to NFS exports via unspecified
+ vectors that trigger a kernel oops (null dereference) and a deadlock.
+Ubuntu-Description:
+ Matthias Andree discovered that the NFS locking management daemon
+ (lockd) did not correctly handle mixing of 'lock' and 'nolock' option
+ mounts on the same client. A remote attacker could exploit this to
+ crash lockd and thus rendering the NFS imports inaccessible.
+Notes:
+ Bug introduced in 2.6.9
+Bugs:
+upstream:
+linux-2.6:
+2.6.8-sarge-security: N/A
+2.4.27-sarge-security: N/A
+2.6.10-hoary-security: needed
+2.6.12-breezy-security: needed
+2.6.15-dapper-security: needed
+2.6.17-edgy: needed
More information about the kernel-sec-discuss
mailing list