85478 2005-03-16 02:19 0000 Netfilter-related local DoS (CAN-2005-0210) 2009-05-03 15:00:50 0000 1 1 1 Unclassified Gentoo Security Kernel unspecified All All RESOLVED FIXED http://www.ubuntulinux.org/support/documentation/usn/usn-95-1 [linux < 2.6.11] P2 normal --- 1 koon@gentoo.org security@gentoo.org kern-sec@gentoo.org koon@gentoo.org 2005-03-16 02:19:53 0000 The Netfilter code also contained a memory leak. Certain locally generated packet fragments are reassembled twice, which caused a double allocation of a data structure. This could be locally exploited to crash the machine due to kernel memory exhaustion. (CAN-2005-0210) koon@gentoo.org 2005-03-16 03:16:29 0000 Mass-Ccing kern-sec@gentoo.org to make sure Kernel Security guys know about all of these... plasmaroo@gentoo.org 2005-04-09 11:38:08 0000 Created an attachment (id=55778) Patch kumba@gentoo.org 2005-04-23 22:26:43 0000 mips-sources fixed. dsd@gentoo.org 2005-04-27 13:40:45 0000 gentoo-sources-2.6 unaffected plasmaroo@gentoo.org 2005-08-15 15:43:15 0000 All fixed, closing bug. 55778 2005-04-09 11:38 0000 Patch 85478.patch text/plain ZGlmZiAtdXJOIHgvbmV0L2lwdjQvaXBfb3V0cHV0LmMgeS9uZXQvaXB2NC9pcF9vdXRwdXQuYwot LS0geC9uZXQvaXB2NC9pcF9vdXRwdXQuYwkyMDA1LTAzLTEwIDIwOjA4OjQ3LjAwMDAwMDAwMCAr MTEwMAorKysgeS9uZXQvaXB2NC9pcF9vdXRwdXQuYwkyMDA1LTAzLTEwIDIwOjExOjQ5LjAwMDAw MDAwMCArMTEwMApAQCAtNDA1LDYgKzQwNSw3IEBACiAJdG8tPnByaW9yaXR5ID0gZnJvbS0+cHJp b3JpdHk7CiAJdG8tPnByb3RvY29sID0gZnJvbS0+cHJvdG9jb2w7CiAJdG8tPnNlY3VyaXR5ID0g ZnJvbS0+c2VjdXJpdHk7CisJZHN0X3JlbGVhc2UodG8tPmRzdCk7CiAJdG8tPmRzdCA9IGRzdF9j bG9uZShmcm9tLT5kc3QpOwogCXRvLT5kZXYgPSBmcm9tLT5kZXY7CiAKZGlmZiAtdXJOIHgvbmV0 L2lwdjYvaXA2X291dHB1dC5jIHkvbmV0L2lwdjYvaXA2X291dHB1dC5jCi0tLSB4L25ldC9pcHY2 L2lwNl9vdXRwdXQuYwkyMDA1LTAzLTEwIDIwOjA4OjQ3LjAwMDAwMDAwMCArMTEwMAorKysgeS9u ZXQvaXB2Ni9pcDZfb3V0cHV0LmMJMjAwNS0wMy0xMCAyMDoxMTo0OC4wMDAwMDAwMDAgKzExMDAK QEAgLTQ2NSw2ICs0NjUsNyBAQAogCXRvLT5wcmlvcml0eSA9IGZyb20tPnByaW9yaXR5OwogCXRv LT5wcm90b2NvbCA9IGZyb20tPnByb3RvY29sOwogCXRvLT5zZWN1cml0eSA9IGZyb20tPnNlY3Vy aXR5OworCWRzdF9yZWxlYXNlKHRvLT5kc3QpOwogCXRvLT5kc3QgPSBkc3RfY2xvbmUoZnJvbS0+ ZHN0KTsKIAl0by0+ZGV2ID0gZnJvbS0+ZGV2OwogCg==