Bug 505678 (CVE-2014-1690)

Summary:	Kernel: netfilter: nf_nat: leakage of uninitialized buffer in IRC NAT helper (CVE-2014-1690)
Product:	Gentoo Security	Reporter:	Agostino Sarubbo <ago>
Component:	Kernel	Assignee:	Gentoo Kernel Security <security-kernel>
Status:	RESOLVED FIXED
Severity:	normal	CC:	kernel
Priority:	Normal
Version:	unspecified
Hardware:	All
OS:	Linux
Whiteboard:
Package list:		Runtime testing required:	---

Description Agostino Sarubbo gentoo-dev

2014-03-25 12:05:55 UTC

CVE-2014-1690 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-1690):

The help function in net/netfilter/nf_nat_irc.c in the Linux kernel before 3.12.8 allows remote attackers 
to obtain sensitive information from kernel memory by establishing an IRC DCC session in which incorrect 
packet data is transmitted during use of the NAT mangle feature.

Comment 1 GLSAMaker/CVETool Bot gentoo-dev

2014-08-10 22:00:58 UTC

CVE-2014-1690 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-1690):
  The help function in net/netfilter/nf_nat_irc.c in the Linux kernel before
  3.12.8 allows remote attackers to obtain sensitive information from kernel
  memory by establishing an IRC DCC session in which incorrect packet data is
  transmitted during use of the NAT mangle feature.

Comment 2 John Helmert III archtester

2022-03-25 21:45:38 UTC

Fix in 3.13, https://github.com/torvalds/linux/commit/2172fa709ab32ca60e86179dc67d0857be8e2c98