Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 314687 (CVE-2010-1086)

Summary: Kernel: dvb Dos (CVE-2010-1086)
Product: Gentoo Security Reporter: Tomás Touceda (RETIRED) <chiiph>
Component: KernelAssignee: Gentoo Security <security>
Status: RESOLVED FIXED    
Severity: normal CC: hardened-kernel+disabled, kernel
Priority: High    
Version: unspecified   
Hardware: All   
OS: Linux   
URL: http://git.kernel.org/linus/29e1fa3565a7951cc415c634eb2b78dbdbee151d
Whiteboard: [linux < 2.6.34]
Package list:
Runtime testing required: ---

Description Tomás Touceda (RETIRED) gentoo-dev 2010-04-11 14:29:43 UTC 
CVE-2010-1086 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-1086):
  The ULE decapsulation functionality in
  drivers/media/dvb/dvb-core/dvb_net.c in dvb-core in Linux kernel
  2.6.33 and earlier allows attackers to cause a denial of service
  (infinite loop) via a crafted MPEG2-TS frame, related to an invalid
  Payload Pointer ULE.