Summary: | Remote DoS in 2.6 nfsacl extension | ||||||
---|---|---|---|---|---|---|---|
Product: | Gentoo Security | Reporter: | Sune Kloppenborg Jeppesen (RETIRED) <jaervosz> | ||||
Component: | Kernel | Assignee: | Gentoo Security <security> | ||||
Status: | RESOLVED INVALID | ||||||
Severity: | normal | CC: | dholm, gmsoft, kang, security-kernel | ||||
Priority: | High | ||||||
Version: | unspecified | ||||||
Hardware: | All | ||||||
OS: | All | ||||||
URL: | http://acl.bestbits.at/pipermail/acl-devel/2005-January/001816.html | ||||||
Whiteboard: | [2.6 maintainerPatching] | ||||||
Package list: | Runtime testing required: | --- | |||||
Attachments: |
|
Description
Sune Kloppenborg Jeppesen (RETIRED)
2004-12-11 00:47:50 UTC
Now public Fixed in ~x86 hardened-dev-sources-2.6.10-r2 gentoo-dev-sources is done the patch is here: http://dev.gentoo.org/~dsd/gentoo-dev-sources/release-10.07/dist/1150_sunrpc-nfsacl.patch Mass-Ccing kern-sec@gentoo.org to make sure Kernel Security guys know about all of these... Created attachment 55551 [details, diff]
Patch
Following sources still need patching: hppa-sources: Adding GMSoft... mips-sources: Adding Kumba... pegasos-sources: Adding dholm... rsbac-sources: Adding kang... rsbac-sources fixed in rsbac-sources-2.6.11-r2 mips-sources fixed. This patch can be dropped. It only applies to the multiple programs (Support multiple program numbers on one RPC transport) functionality provided by the nfsacl extention patches not yet merged upstream. Normal sunrpc users are not affected. Closing bug as per comment #9. |