158786 – Kernel: SELinux superblock_doinit denial of service (CVE-2006-6056)

Bug 158786 - Kernel: SELinux superblock_doinit denial of service (CVE-2006-6056)

Summary: Kernel: SELinux superblock_doinit denial of service (CVE-2006-6056)

Status:	RESOLVED FIXED

Alias:	None

Product:	Gentoo Security
Classification:	Unclassified
Component:	Kernel (show other bugs)
Hardware:	All Linux

Importance:	High normal (vote)
Assignee:	Gentoo Security

URL:	http://git.kernel.org/?p=linux/kernel...
Whiteboard:	[linux <2.6.16.38] [linux >=2.6.17 <2...
Keywords:

Duplicates (1):	155163 (view as bug list)
Depends on:
Blocks:

Reported:	2006-12-21 18:51 UTC by Daniel Drake (RETIRED)
Modified:	2009-07-11 11:58 UTC (History)
CC List:	5 users (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
patch (1915_hfs-root-inode.patch,1.90 KB, patch) 2006-12-23 08:41 UTC, Daniel Drake (RETIRED)	no flags	Details \| Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Daniel Drake (RETIRED) gentoo-dev

2006-12-21 18:51:48 UTC

Failure to handle mounting of corrupt filesystem streams may lead to a local denial of service condition when SELinux hooks are enabled. This particular vulnerability is caused by a null pointer dereference in the superblock_doinit function.

Comment 1 Daniel Drake (RETIRED) gentoo-dev

2006-12-23 08:41:34 UTC

Created attachment 104641 [details, diff]
patch

Comment 2 Daniel Drake (RETIRED) gentoo-dev

2006-12-26 12:20:37 UTC

Fixed in genpatches-2.6.18-8 (gentoo-sources-2.6.18-r6)

Comment 3 Christian Heim (RETIRED) gentoo-dev

2006-12-27 11:52:06 UTC

(In reply to comment #2)
> Fixed in genpatches-2.6.18-8 (gentoo-sources-2.6.18-r6)

Fixed with hardened-sources-2.6.18-r4.

Comment 4 Harlan Lieberman-Berg (RETIRED) gentoo-dev

2007-01-01 17:48:11 UTC

ck-sources: Bump to .18 and genpatches 8, or .19.
openvz-sources: Patch or bump to unaffected.
rsbac-sources: Bump to .19 or genpatches 8.
usermode-sources: Bump to .19 or genpatches 8.
vserver-sources: Patch or bump to unaffected version or genpatches 8.

Comment 5 Harlan Lieberman-Berg (RETIRED) gentoo-dev

2007-01-01 18:01:41 UTC

Whoosies. Thanks dsd. ;)

mips-sources: bump to .18 and genpatches .8, or .19
xen-sources: Same goes for you.

Comment 6 Harlan Lieberman-Berg (RETIRED) gentoo-dev

2007-01-01 18:04:05 UTC

Whoosies. Thanks dsd. ;)

mips-sources: bump to .18 and genpatches .8, or .19
xen-sources: Same goes for you.

Comment 7 Daniel Drake (RETIRED) gentoo-dev

2007-01-01 20:15:38 UTC

*** Bug 155163 has been marked as a duplicate of this bug. ***

Comment 8 Daniel Gryniewicz (RETIRED) gentoo-dev

2007-01-02 20:36:22 UTC

usermode is bumped to .8

Comment 9 Guillaume Destuynder (RETIRED) gentoo-dev

2007-01-12 13:43:15 UTC

rsbac-sources-2.6.19 is in cvs (~arch)

Comment 10 Andrew Ross (RETIRED) gentoo-dev

2007-01-27 06:02:37 UTC

Thanks, this is fixed in xen-sources-2.6.16.28-r2, which will hit the tree in a few hours (just waiting for the mirrors to update before I commit the ebuild).

Comment 11 Daniel Drake (RETIRED) gentoo-dev

2007-05-02 16:58:55 UTC

only remaining vulnerable package is openvz-sources

Comment 12 Harlan Lieberman-Berg (RETIRED) gentoo-dev

2007-10-01 23:17:54 UTC

Closing. It's been open long enough, and openvz is iffy about supported anyway.