[kernel-sec-discuss] r1121 - active
jmm at alioth.debian.org
jmm at alioth.debian.org
Wed Feb 6 09:11:35 UTC 2008
Author: jmm
Date: 2008-02-06 09:11:34 +0000 (Wed, 06 Feb 2008)
New Revision: 1121
Modified:
active/CVE-2007-6694
Log:
fill in details
Modified: active/CVE-2007-6694
===================================================================
--- active/CVE-2007-6694 2008-02-04 17:33:37 UTC (rev 1120)
+++ active/CVE-2007-6694 2008-02-06 09:11:34 UTC (rev 1121)
@@ -1,14 +1,22 @@
-Candidate:
+Candidate: CVE-2007-6694
Description:
+ The chrp_show_cpuinfo function (chrp/setup.c) in Linux kernel 2.4.21
+ through 2.6.18-53, when running on PowerPC, might allow local users
+ to cause a denial of service (crash) via unknown vectors that cause
+ the of_get_property function to fail, which triggers a NULL pointer
+ dereference.
References:
+ http://marc.info/?l=linux-kernel&m=119576191029571&w=2
Ubuntu-Description:
Notes:
+ jmm> This appears more of a regular bug with a specific piece of hw
+ jmm> than a security problem. Do we support the chrp POWER platform?
Bugs:
upstream:
linux-2.6:
-2.6.18-etch-security:
-2.6.8-sarge-security:
-2.4.27-sarge-security:
+2.6.18-etch-security:
+2.6.8-sarge-security:
+2.4.27-sarge-security:
2.6.15-dapper-security:
2.6.17-edgy-security:
2.6.20-feisty-security:
More information about the kernel-sec-discuss
mailing list