Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 125436 - Kernel: Local DoS - x86_64 doesn't check for bad elf entry address (CVE-2006-0741)
Summary: Kernel: Local DoS - x86_64 doesn't check for bad elf entry address (CVE-2006-...
Status: RESOLVED FIXED
Alias: None
Product: Gentoo Security
Classification: Unclassified
Component: Kernel (show other bugs)
Hardware: AMD64 Linux
: High normal
Assignee: Gentoo Security
URL: http://git.kernel.org/?p=linux/kernel...
Whiteboard: [linux <2.6.15.5]
Keywords:
Depends on:
Blocks:
 
Reported: 2006-03-07 20:29 UTC by kfm
Modified: 2009-07-11 09:39 UTC (History)
3 users (show)

See Also:
Package list:
Runtime testing required: ---

Attachments
x86_64-bad-elf-entry-addr.patch (1461_15.5_x86_64-bad-elf-entry-addr.patch,1004 bytes, patch)
2006-03-07 20:30 UTC, kfm 		no flags Details | Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description kfm 2006-03-07 20:29:05 UTC 
According to the commit this "fixes a local DOS on Intel systems that lead to an endless recursive fault. AMD machines don't seem to be affected." The following kernels/patchsets are not affected:

  * >=vanilla-sources-2.6.15.5
  * >=gentoo-sources-2.6.15-r6
  * >=genpatches-2.6.15-9

Patch here: http://tinyurl.com/j3crb
Comment 1 kfm 2006-03-07 20:30:46 UTC 
Created attachment 81664 [details, diff]
x86_64-bad-elf-entry-addr.patch

Patch. Also applies to 2.6.14.
Comment 2 Tim Yamin (RETIRED) gentoo-dev 2006-03-11 11:58:48 UTC 
CCing maintainers:

ck-sources: marineam
hardened-sources: hardened herd
hppa-sources: gmsoft
mips-sources: `Kumba
rsbac-sources: kang
suspend2-sources: brix
xbox-sources: gimli
Comment 3 Tim Yamin (RETIRED) gentoo-dev 2006-03-11 12:00:30 UTC 
Only affects x86_64; remove a few redundant sources :)
Comment 4 Micheal Marineau (RETIRED) gentoo-dev 2006-03-14 12:51:25 UTC 
ck fixed since ck-sources-2.6.15_p5
Comment 5 kfm 2006-03-16 04:33:04 UTC 
Now fixed in:

  * genpatches-2.6.14-11
  * hardened-sources-2.6.14-r6
Comment 6 Tim Yamin (RETIRED) gentoo-dev 2006-04-20 10:57:42 UTC 
All fixed now, thanks!