[kernel-sec-discuss] r695 - active
Martin Pitt
mpitt at alioth.debian.org
Tue Jan 16 12:29:04 CET 2007
Author: mpitt
Date: 2007-01-16 12:29:04 +0100 (Tue, 16 Jan 2007)
New Revision: 695
Modified:
active/CVE-2006-5749
Log:
flesh out CVE-2006-5749
Modified: active/CVE-2006-5749
===================================================================
--- active/CVE-2006-5749 2007-01-16 11:16:27 UTC (rev 694)
+++ active/CVE-2006-5749 2007-01-16 11:29:04 UTC (rev 695)
@@ -1,15 +1,23 @@
Candidate: CVE-2006-5749
References:
+ http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=dab6df63086762629936e8b89a5984bae39724f6
Description:
- isdn_ppp DoS
+ The isdn_ppp_ccp_reset_alloc_state function in
+ drivers/isdn/isdn_ppp.c in the Linux 2.4 kernel before 2.4.34-rc4
+ does not call the init_timer function for the ISDN PPP CCP reset
+ state timer, which has unknown attack vectors and results in a system
+ crash.
Ubuntu-Description:
+ Al Viro reported that the ISDN PPP module did not initialize the
+ reset state timer. A local attacker could exploit this to crash the
+ kernel.
Notes:
Bugs:
-upstream: needed
+upstream: released (2.6.20-rc5)
linux-2.6: needed
2.6.18-etch: needed
2.6.8-sarge-security: needed
2.4.27-sarge-security: needed
-2.6.12-breezy-security:
-2.6.15-dapper-security:
-2.6.17-edgy-security:
+2.6.12-breezy-security: needed
+2.6.15-dapper-security: needed
+2.6.17-edgy-security: needed
More information about the kernel-sec-discuss
mailing list