[kernel] r4932 - patch-tracking
Moritz Muehlenhoff
jmm-guest at costa.debian.org
Wed Nov 30 09:26:54 UTC 2005
Author: jmm-guest
Date: Wed Nov 30 09:26:51 2005
New Revision: 4932
Added:
patch-tracking/CVE-2005-3858
Log:
mem leak vulnerability fixed in 2.6.12.6
Added: patch-tracking/CVE-2005-3858
==============================================================================
--- (empty file)
+++ patch-tracking/CVE-2005-3858 Wed Nov 30 09:26:51 2005
@@ -0,0 +1,24 @@
+Candidate: CVE-2005-3858
+References:
+ http://marc.theaimsgroup.com/?l=linux-kernel&m=112508479120081&w=2
+ http://marc.theaimsgroup.com/?l=linux-kernel&m=112533899509033&w=2
+
+Description:
+ Memory leak in the ip6_input_finish function in ip6_input.c in Linux
+ kernel 2.6.12 and earlier might allow attackers to cause a denial of
+ service via malformed IPv6 packets with unspecified parameter problems,
+ which prevents the SKB from being freed.
+
+Notes:
+Bugs:
+upstream: released (2.6.12.6)
+2.6.14:
+2.6.8-sarge-security:
+2.4.27-sarge-security:
+2.6.8:
+2.4.19-woody-security:
+2.4.18-woody-security:
+2.4.17-woody-security:
+2.4.16-woody-security:
+2.4.17-woody-security-hppa:
+2.4.17-woody-security-ia64:
More information about the Kernel-svn-changes
mailing list