Bug 113326 - Kernel: Local DoS through connection timer handling (CVE-2005-3274)
Bug#: 113326 Product:  Gentoo Security Version: unspecified Platform: All
OS/Version: Linux Status: RESOLVED Severity: minor Priority: P2
Resolution: FIXED Assigned To: security@gentoo.org Reported By: koon@gentoo.org
Component: Kernel
URL: 
Summary: Kernel: Local DoS through connection timer handling (CVE-2005-3274)
Keywords:  
Status Whiteboard: [linux < 2.4.32] [linux >=2.6 < 2.6.13]
Opened: 2005-11-23 02:06 0000
Description:   Opened: 2005-11-23 02:06 0000 
In Ubuntu's USN-219-1:

Neil Horman discovered a race condition in the connection timer
handling. This allowed a local attacker to set up an expiration
handler which modified the connection list while the list still being
traversed, which could result in a kernel crash. This vulnerability
only affects multiprocessor (SMP) systems. (CVE-2005-3274)

------- Comment #1 From Tim Yamin (RETIRED) 2005-12-24 05:22:56 0000 ------- 
Adding 2.4 maintainers; {mips,openmosix,rsbac,xbox}-sources.

------- Comment #2 From Tim Yamin (RETIRED) 2006-01-02 15:39:59 0000 ------- 
Toggle status.

------- Comment #3 From Tim Yamin (RETIRED) 2006-03-11 10:21:43 0000 ------- 
MIPS, OpenMOSIX and rsbac -- a bump is still needed... Let me know if there are
any problems with doing so.

------- Comment #4 From Tim Yamin (RETIRED) 2006-05-18 13:38:58 0000 ------- 
All resolved, closing...