357071 – (CVE-2011-1080) Kernel: enforce the "do_replace()" function in net/bridge/netfilter/ebtables.c (CVE-2011-1080)

Bug 357071 (CVE-2011-1080) - Kernel: enforce the "do_replace()" function in net/bridge/netfilter/ebtables.c (CVE-2011-1080)

Summary: Kernel: enforce the "do_replace()" function in net/bridge/netfilter/ebtables....

Status:	RESOLVED INVALID

Alias:	CVE-2011-1080

Product:	Gentoo Security
Classification:	Unclassified
Component:	Kernel (show other bugs)
Hardware:	All Linux

Importance:	High normal (vote)
Assignee:	Gentoo Security

URL:	https://lkml.org/lkml/2011/2/14/51
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2011-03-02 08:46 UTC by kerncode
Modified:	2016-02-20 05:20 UTC (History)
CC List:	0 users

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description kerncode 2011-03-02 08:46:24 UTC

The "do_replace()" function in net/bridge/netfilter/ebtables.c does not properly terminate a string, which can be exploited to disclose system information.

Comment 1 Aaron Bauman (RETIRED) gentoo-dev

2016-02-20 05:20:49 UTC

old kernel bug.  no GLSA required.  Not feasible to track backports of patches