[kernel-sec-discuss] r1907 - active
Michael Gilbert
gilbert-guest at alioth.debian.org
Sun Aug 15 05:15:19 UTC 2010
Author: gilbert-guest
Date: 2010-08-15 05:15:18 +0000 (Sun, 15 Aug 2010)
New Revision: 1907
Added:
active/CVE-2010-sctp-dos
Log:
new issue
Added: active/CVE-2010-sctp-dos
===================================================================
--- active/CVE-2010-sctp-dos (rev 0)
+++ active/CVE-2010-sctp-dos 2010-08-15 05:15:18 UTC (rev 1907)
@@ -0,0 +1,14 @@
+Candidate: needed
+Description: sctp dos
+References:
+ http://twitter.com/jonoberheide/statuses/20744052422
+Notes:
+ - fixed in 2.6.33.4, which has four sctp commits
+ - most likely commit 81540f22 (upstream 8170c35e)
+ - should the other sctp commits in 2.6.33.4 be fixed as well? most seem to have security implications (freed pointer issue, etc.). upstream commits c07866934, 0c42749c, 561b1733
+Bugs:
+upstream: released (2.6.34) [8170c35e]
+2.6.32-upstream-stable: needed
+linux-2.6: needed
+2.6.26-lenny-security:
+2.6.32-squeeze-security: needed
More information about the kernel-sec-discuss
mailing list