Bug List: (This bug is not in your last search results)   Show last search results      Search page      Enter new bug
Bug#: 133863
Alias:
Product:
Component:
Status: RESOLVED
Resolution: DUPLICATE of bug 132855
Assigned To: Gentoo Security <security@gentoo.org>
Hardware:
OS:
Version:
Priority:
Severity:
Reporter: Dax <gentoomail@gmail.com>
Add CC:
CC:
Remove selected CCs
URL:
Summary:
Status Whiteboard:
Keywords:
Flags: Requestee:
 
 
  ()

Filename Description Type Creator Created Size Actions
Create a New Attachment (proposed patch, testcase, etc.) View All

Bug 133863 depends on: Show dependency tree
Bug 133863 blocks:

Additional Comments: (this is where you put emerge --info)


Not eligible to see or edit group visibility for this bug.






View Bug Activity   |   Format For Printing   |   XML   |   Clone This Bug

Description:   Opened: 2006-05-20 05:12 0000 
The Linux kernel is prone to a local denial-of-service vulnerability. This
issue is due to a design error in the '__setlease' function.

This vulnerability allows local users to leak kernel memory, potentially
resulting in a kernel panic, denying further service to legitimate users.

This issue affects Linux kernel versions prior to 2.6.16.16.
#########


    Linux 2.6.16.16

commit 1f0e637c94a9b041833947c79110d6c02fff8618
Author: Trond Myklebust <Trond.Myklebust@netapp.com>
Date:   Sun May 7 23:02:42 2006 -0400

    [PATCH] fs/locks.c: Fix lease_init (CVE-2006-1860)

    It is insane to be giving lease_init() the task of freeing the lock it is
    supposed to initialise, given that the lock is not guaranteed to be
    allocated on the stack. This causes lockups in fcntl_setlease().
    Problem diagnosed by Daniel Hokka Zakrisson <daniel@hozac.com>

    Also fix a slab leak in __setlease() due to an uninitialised return value.
    Problem diagnosed by Björn Steinbrink.

------- Comment #1 From Dax 2006-05-20 05:12:20 0000 ------- 
The Linux kernel is prone to a local denial-of-service vulnerability. This
issue is due to a design error in the '__setlease' function.

This vulnerability allows local users to leak kernel memory, potentially
resulting in a kernel panic, denying further service to legitimate users.

This issue affects Linux kernel versions prior to 2.6.16.16.
#########


    Linux 2.6.16.16

commit 1f0e637c94a9b041833947c79110d6c02fff8618
Author: Trond Myklebust <Trond.Myklebust@netapp.com>
Date:   Sun May 7 23:02:42 2006 -0400

    [PATCH] fs/locks.c: Fix lease_init (CVE-2006-1860)

    It is insane to be giving lease_init() the task of freeing the lock it is
    supposed to initialise, given that the lock is not guaranteed to be
    allocated on the stack. This causes lockups in fcntl_setlease().
    Problem diagnosed by Daniel Hokka Zakrisson <daniel@hozac.com>

    Also fix a slab leak in __setlease() due to an uninitialised return value.
    Problem diagnosed by Björn Steinbrink.

------- Comment #2 From Tim Yamin (RETIRED) 2006-05-26 08:22:52 0000 ------- 

*** This bug has been marked as a duplicate of 132855 ***
Bug List: (This bug is not in your last search results)   Show last search results      Search page      Enter new bug