[kernel-sec-discuss] r3297 - active
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Thu Apr 10 14:54:31 UTC 2014
Author: jmm
Date: 2014-04-10 14:53:28 +0000 (Thu, 10 Apr 2014)
New Revision: 3297
Added:
active/CVE-2014-2739
Log:
new infiniband issue
Added: active/CVE-2014-2739
===================================================================
--- active/CVE-2014-2739 (rev 0)
+++ active/CVE-2014-2739 2014-04-10 14:53:28 UTC (rev 3297)
@@ -0,0 +1,17 @@
+Description: IB/core: Don't resolve passive side RoCE L2 address in CMA REQ handler
+References:
+Notes:
+ From oss-sec:
+ Linux kernel built with the InfiniBand communication link(CONFIG_INFINIBAND)
+ along with the support for Remote Direct Memory Access(RDMA) over Convered
+ Ethernet(RoCE), is vulnerable to a crash caused by invalid memory access.
+ It occurs while trying to resolve RoCE L2 address on the server side.
+ A remote unprivileged user/program could use this flaw to crash the kernel,
+ resulting in DoS.
+Bugs:
+upstream: released (3.14-rc4) [b2853fd6c2d0f383dbdf7427e263eb576a633867]
+2.6.32-upstream-stable:
+sid:
+3.2-wheezy-security:
+2.6.32-squeeze-security:
+3.2-upstream-stable:
More information about the kernel-sec-discuss
mailing list