r4493 - people/micah
Dann Frazier
dannf at costa.debian.org
Sun Oct 16 22:26:43 UTC 2005
Author: dannf
Date: 2005-10-16 22:26:43 +0000 (Sun, 16 Oct 2005)
New Revision: 4493
Modified:
people/micah/pending_CVE_requests
Log:
add an attribution & tell when an issue was fixed
Modified: people/micah/pending_CVE_requests
===================================================================
--- people/micah/pending_CVE_requests 2005-10-16 22:26:01 UTC (rev 4492)
+++ people/micah/pending_CVE_requests 2005-10-16 22:26:43 UTC (rev 4493)
@@ -164,6 +164,6 @@
dannf> This is the only one in 2.4.27-10sarge1 I couldn't find a CAN for elsewhere...
* 184_arch-x86_64-ia32-ptrace32-oops.diff
URL: http://lkml.org/lkml/2005/1/5/245
-The find_target() routine in x86_64 Linux 2.4 kernels prior to 2.4.XX failed to properly handle the case where
-find_task_by_pid() returns NULL. This is a potential DoS attack vector as it is possible for local users to
-cause the kernel to oops.
+Mark Bellon discovered a bug in the ptrace32 code routine on x86_64 Linux 2.4 kernels prior to 2.4.29.
+The find_target routine failed to properly handle the case where find_task_by_pid() returns NULL. This
+is a potential DoS attack vector as it is possible for local users to cause the kernel to oops.
More information about the Kernel-svn-changes
mailing list