r4436 - people/micah
Dann Frazier
dannf at costa.debian.org
Thu Oct 13 04:16:34 UTC 2005
Author: dannf
Date: 2005-10-13 04:16:33 +0000 (Thu, 13 Oct 2005)
New Revision: 4436
Modified:
people/micah/pending_CVE_requests
Log:
add notes for net-ipv4-ipvs-conn_tab-race.dpatch & asm-i386-mem-clobber.dpatch
Modified: people/micah/pending_CVE_requests
===================================================================
--- people/micah/pending_CVE_requests 2005-10-13 03:31:00 UTC (rev 4435)
+++ people/micah/pending_CVE_requests 2005-10-13 04:16:33 UTC (rev 4436)
@@ -55,13 +55,15 @@
[Security] Fix race condition on ip_vs_conn_tab list modification
Draft CVE text:
A race condition resulting in a potential DoS was discovered in
-ip_vs_conn_flush in Linux 2.?.? on SMP systems. A race condition
+ip_vs_conn_flush in 2.6 kernels earlier than 2.6.13 and 2.4 kernels
+earlier than 2.4.32 on SMP systems. A race condition
exists involving the lock release and re-aquisition of the list
iterator loop resulting in the connection pointer to be set to NULL
and then subsequently dereferenced, resulting in an oops.
URL: http://lkml.org/lkml/2005/6/23/249
URL: http://lkml.org/lkml/2005/6/24/173
-TODO: What version of the kernel does this affect? 2.4 also?
+URL: http://www.kernel.org/git/?p=linux/kernel/git/marcelo/linux-2.4.git;a=commit;h=e684f066dff5628bb61ad1912de6e8058b5b4c7d
+TODO: This isn't fixed in 2.4.31, but is in Marcello's 2.4 tree
* asm-i386-mem-clobber.dpatch:
Draft CVE text:
@@ -72,7 +74,8 @@
URL: http://lkml.org/lkml/2005/6/27/348
URL: http://linux.bkbits.net:8080/linux-2.6/cset@1.3349?nav=index.html|src/|src/include|src/include/asm-i386|related/include/asm-i386/string.h
TODO: CVE text
-TODO: Security issue?
+TODO: Security issue? dannf> It's noted as *not* a security issue in patches/debian/series/2.6.8-16sarge1;
+TODO: though its in the changelog, it isn't applied in that version
TODO: Fixed in Upstream 2.6.12.2
More information about the Kernel-svn-changes
mailing list