101435 – Kernel: xfrm Overflow Vulnerability (CAN-2005-2456)

Bug 101435 - Kernel: xfrm Overflow Vulnerability (CAN-2005-2456)

Summary: Kernel: xfrm Overflow Vulnerability (CAN-2005-2456)

Status:	RESOLVED FIXED

Alias:	None

Product:	Gentoo Security
Classification:	Unclassified
Component:	Kernel (show other bugs)
Hardware:	All Linux

Importance:	High normal (vote)
Assignee:	Gentoo Security

URL:	http://www.kernel.org/git/gitweb.cgi?...
Whiteboard:	[linux <2.6.12.4]
Keywords:

Duplicates (1):	103326 (view as bug list)
Depends on:
Blocks:

Reported:	2005-08-05 06:30 UTC by Jean-François Brunette (RETIRED)
Modified:	2009-05-03 15:35 UTC (History)
CC List:	2 users (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Jean-François Brunette (RETIRED) gentoo-dev

2005-08-05 06:30:56 UTC

Not considered as critical, but I just do my job and report it ;)

------------------------------------------
Description:
Balazs Scheidler has reported a vulnerability in the Linux kernel, which
potentially can be exploited by malicious, local users to cause a DoS (Denial of
Service).

The vulnerability is caused due to a boundary error in the XFRM code and can be
exploited to cause an array indexing overflow.

Solution:
The vulnerability has been fixed in versions 2.6.13-rc4 and later.

Comment 1 Tim Yamin (RETIRED) gentoo-dev

2005-08-05 07:58:14 UTC

(Patch at URL)

Comment 2 Daniel Drake (RETIRED) gentoo-dev

2005-08-05 09:46:21 UTC

Updating URL to point at the patch which was applied to Linus' tree.

This was fixed in gentoo-sources-2.6.12-r7 (genpatches-2.6.12-11)

Comment 3 Thierry Carrez (RETIRED) gentoo-dev

2005-08-22 05:14:47 UTC

*** Bug 103326 has been marked as a duplicate of this bug. ***

Comment 4 Tim Yamin (RETIRED) gentoo-dev

2005-11-26 03:52:23 UTC

All fixed, closing bug.