[kernel-sec-discuss] [Git][kernel-team/kernel-sec][master] Add additional references for CVE-2018-1066
Salvatore Bonaccorso
gitlab at salsa.debian.org
Tue Mar 6 14:24:21 UTC 2018
Salvatore Bonaccorso pushed to branch master at Debian kernel team / kernel-sec
Commits:
d97561ee by Salvatore Bonaccorso at 2018-03-06T15:24:14+01:00
Add additional references for CVE-2018-1066
- - - - -
1 changed file:
- active/CVE-2018-1066
Changes:
=====================================
active/CVE-2018-1066
=====================================
--- a/active/CVE-2018-1066
+++ b/active/CVE-2018-1066
@@ -1,6 +1,8 @@
Description: Null pointer dereference in fs/cifs/cifsencrypt.c:setup_ntlmv2_rsp() when empty TargetInfo is returned in NTLMSSP setup negotiation response allowing to crash client's kernel
References:
https://patchwork.kernel.org/patch/10187633/
+ https://bugzilla.redhat.com/show_bug.cgi?id=1539599
+ http://www.openwall.com/lists/oss-security/2018/03/06/1
Notes:
carnil> Issue fixed upstream differently/unknownigly with the
carnil> referenced commit cabfb3680f78981d26c078a26e5c748531257ebb
View it on GitLab: https://salsa.debian.org/kernel-team/kernel-sec/commit/d97561ee2244717fd70c8f372478629c0510c195
---
View it on GitLab: https://salsa.debian.org/kernel-team/kernel-sec/commit/d97561ee2244717fd70c8f372478629c0510c195
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/kernel-sec-discuss/attachments/20180306/841ee63f/attachment.html>
More information about the kernel-sec-discuss
mailing list