Bug List: (This bug is not in your last search results)   Show last search results      Search page      Enter new bug
Bug#: 74392
Alias:
Product:
Component:
Status: RESOLVED
Resolution: FIXED
Assigned To: Gentoo Security <security@gentoo.org>
Hardware:
OS:
Version:
Priority:
Severity:
Reporter: Thierry Carrez (RETIRED) <koon@gentoo.org>
Add CC:
CC:
Remove selected CCs
URL:
Summary:
Status Whiteboard:
Keywords:
Flags: Requestee:
 
 
  ()

Filename Description Type Creator Created Size Actions
patch-2.6.x-CAN-2004-1016.patch Patch (2.4/2.6) patch Thierry Carrez (RETIRED) 2004-12-14 09:01 0000 2.77 KB Details | Diff
Create a New Attachment (proposed patch, testcase, etc.) View All

Bug 74392 depends on: Show dependency tree
Bug 74392 blocks:

Additional Comments: (this is where you put emerge --info)


Not eligible to see or edit group visibility for this bug.






View Bug Activity   |   Format For Printing   |   XML   |   Clone This Bug

Description:   Opened: 2004-12-14 09:00 0000 
Synopsis:  Linux kernel scm_send local DoS
Product:   Linux kernel
Version:   2.4 up to and including 2.4.28, 2.6 up to and including 2.6.9
Vendor:    http://www.kernel.org/
URL:       http://isec.pl/vulnerabilities/isec-0019-scm.txt
CVE:       CAN-2004-1016
Author:    Paul Starzetz <ihaquer@isec.pl>
Date:      Dec 14, 2004

------- Comment #1 From Thierry Carrez (RETIRED) 2004-12-14 09:01:58 0000 ------- 
Created an attachment (id=45975) [details]
patch-2.6.x-CAN-2004-1016.patch

Patch for 2.6 tree.

------- Comment #2 From Thierry Carrez (RETIRED) 2004-12-14 09:05:24 0000 ------- 
*** Bug 72458 has been marked as a duplicate of this bug. ***

------- Comment #3 From solar 2004-12-14 22:12:31 0000 ------- 
Note: attachment # 45975 [details] patches clean to 2.4.x kernels. 
This code has also been merged upsream in bk
http://kernel.org/pub/linux/kernel/v2.4/snapshots/patch-2.4.29-pre1-bk8.bz2

------- Comment #4 From solar 2004-12-14 23:00:57 0000 ------- 
grsec-sources done.

------- Comment #5 From Christian Birchinger 2004-12-16 12:10:30 0000 ------- 
sparc-sources 2.4.28-r2 are patched

------- Comment #6 From Adam Mondl (RETIRED) 2004-12-24 13:11:46 0000 ------- 
Patched in ~x86 hardened-sources-2.4.28-r1

------- Comment #7 From Tim Yamin (RETIRED) 2004-12-24 16:36:13 0000 ------- 
Ok, all patched - the following externally maintained sources still need
patching:

gentoo-dev-sources -- Adding dsd...
hppa(-dev)-sources -- Adding GMSoft...
mips-sources -- Adding `Kumba...
openmosix-sources -- Adding cluster herd...
pegasos-dev-sources -- Adding dholm...
rsbac(-dev)-sources -- Adding kang...

------- Comment #8 From Daniel Drake 2004-12-24 19:19:35 0000 ------- 
gentoo-dev-sources was already done :)

------- Comment #9 From David Holm (RETIRED) 2004-12-25 05:29:33 0000 ------- 
pegasos-dev-sources fixed

------- Comment #10 From Konstantin Arkhipov 2004-12-27 01:21:37 0000 ------- 
done in oM6-sources

------- Comment #11 From Guy Martin 2004-12-27 06:27:32 0000 ------- 
2.4 is dropped on hppa and I've added 2.6.10-pa1 which doesn't seems affected
by this problem.

------- Comment #12 From Joshua Kinard 2005-01-05 21:21:21 0000 ------- 
mips-sources fixed.

------- Comment #13 From Guillaume Destuynder (RETIRED) 2005-01-13 16:03:44 0000 ------- 
rsbac-dev-sources fixed

------- Comment #14 From Guillaume Destuynder (RETIRED) 2005-01-21 05:38:53 0000 ------- 
rsbac-sources 2.4 is also fixed in ~x86

------- Comment #15 From Thierry Carrez (RETIRED) 2005-03-16 03:16:30 0000 ------- 
Mass-Ccing kern-sec@gentoo.org to make sure Kernel Security guys know about all
of these...

------- Comment #16 From Tim Yamin (RETIRED) 2005-03-16 06:08:24 0000 ------- 
All fixed, resolving bug.

------- Comment #17 From Robert Buchholz 2009-05-03 13:56:14 0000 ------- 
http://git.kernel.org/?p=linux/kernel/git/tglx/history.git;a=commit;h=620512af09f33236b4ea04372816b761d48586d9
Bug List: (This bug is not in your last search results)   Show last search results      Search page      Enter new bug