[kernel] r4974 - patch-tracking
Moritz Muehlenhoff
jmm-guest at costa.debian.org
Mon Dec 5 10:32:01 UTC 2005
Author: jmm-guest
Date: Mon Dec 5 10:31:59 2005
New Revision: 4974
Added:
patch-tracking/CVE-2005-1041
Log:
CVE-2005-1041 fib_hash.c DoS
Added: patch-tracking/CVE-2005-1041
==============================================================================
--- (empty file)
+++ patch-tracking/CVE-2005-1041 Mon Dec 5 10:31:59 2005
@@ -0,0 +1,24 @@
+Candidate: CVE-2005-1041
+References:
+ http://marc.theaimsgroup.com/?l=bk-commits-head&m=111186506706769&w=2
+
+Description:
+ The fib_seq_start function in fib_hash.c in Linux kernel allows local
+ users to cause a denial of service (system crash) via /proc/net/route.
+
+Notes:
+ horms> 2.4.27 is not effected by 304548 as the buggy code is a complete
+ horms> rework for 2.6. I looked over the way that proc/route is handled
+ horms> for 2.4.27, and it seems fine.
+
+Bugs: 304548
+upstream: released (2.6.11.5)
+2.6.14: N/A
+2.6.8-sarge-security: released (2.6.8-16)
+2.4.27-sarge-security: N/A
+2.4.19-woody-security:
+2.4.18-woody-security:
+2.4.17-woody-security:
+2.4.16-woody-security:
+2.4.17-woody-security-hppa:
+2.4.17-woody-security-ia64:
More information about the Kernel-svn-changes
mailing list