78362 – Local DoS through vc_resize (CAN-2004-1333)

Bug 78362 - Local DoS through vc_resize (CAN-2004-1333)

Summary: Local DoS through vc_resize (CAN-2004-1333)

Status:	RESOLVED FIXED

Alias:	None

Product:	Gentoo Security
Classification:	Unclassified
Component:	Kernel (show other bugs)
Hardware:	All All

Importance:	High minor (vote)
Assignee:	Gentoo Security

URL:	http://www.guninski.com/where_do_you_...
Whiteboard:	[linux< 2.4.29] [linux >=2.6 < 2.6.10]
Keywords:

Depends on:
Blocks:

Reported:	2005-01-17 07:00 UTC by Thierry Carrez (RETIRED)
Modified:	2009-05-03 14:50 UTC (History)
CC List:	2 users (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
2.4 patch (2.4.28-78362.patch,10.13 KB, patch) 2005-02-15 13:55 UTC, Tim Yamin (RETIRED)	no flags	Details \| Diff
2.6.9 patch (2.6.9-78362.patch,2.37 KB, patch) 2005-02-15 13:56 UTC, Tim Yamin (RETIRED)	no flags	Details \| Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Thierry Carrez (RETIRED) gentoo-dev

2005-01-17 07:00:50 UTC

CAN-2004-1333
Integer overflow in the vc_resize function in the Linux kernel 2.4 and 2.6 before 2.6.10 allows local users to cause a denial of service (kernel crash) via a short new screen value, which leads to a buffer overflow.

Comment 1 Thierry Carrez (RETIRED) gentoo-dev

2005-01-17 07:04:24 UTC

See URL for common patches with bug 78363 and bug 74392.

Comment 2 Adam Mondl (RETIRED) gentoo-dev

2005-01-21 19:11:14 UTC

Fixed in ~x86 hardened-sources-2.4.28-r4

Comment 3 Tim Yamin (RETIRED) gentoo-dev

2005-02-15 13:55:52 UTC

Created attachment 51304 [details, diff]
2.4 patch

Comment 4 Tim Yamin (RETIRED) gentoo-dev

2005-02-15 13:56:23 UTC

Created attachment 51305 [details, diff]
2.6.9 patch

Comment 5 Thierry Carrez (RETIRED) gentoo-dev

2005-03-16 03:16:49 UTC

Mass-Ccing kern-sec@gentoo.org to make sure Kernel Security guys know about all
of these...

Comment 6 Daniel Drake (RETIRED) gentoo-dev

2005-03-16 05:57:13 UTC

gentoo-dev-sources unaffected

Comment 7 Tim Yamin (RETIRED) gentoo-dev

2005-03-29 05:52:06 UTC

All fixed, closing bug.

Comment 8 Tim Yamin (RETIRED) gentoo-dev

2005-03-29 05:53:53 UTC

Hrm, a few of the branched sources still need fixing; reopening.

Comment 9 Tim Yamin (RETIRED) gentoo-dev

2005-03-29 06:03:16 UTC

`Kumba: It seems mips-sources-2.4.27, 2.4.28, 2.6.8.1 and 2.6.9 still need this fix; anything >= 2.6.10 already includes it.

Comment 10 Tim Yamin (RETIRED) gentoo-dev

2005-04-06 15:13:56 UTC

openmosix-sources also needs patching; CCing cluster.

Comment 11 Joshua Kinard gentoo-dev

2005-04-23 22:30:24 UTC

mips-sources fixed.

Comment 12 Tim Yamin (RETIRED) gentoo-dev

2005-08-15 15:36:11 UTC

All fixed, closing bug.