103326 – Kernel: Local DoS through xfrm_compile_policy (CAN-2005-2456)

Bug 103326 - Kernel: Local DoS through xfrm_compile_policy (CAN-2005-2456)

Summary: Kernel: Local DoS through xfrm_compile_policy (CAN-2005-2456)

Status:	RESOLVED DUPLICATE of bug 101435

Alias:	None

Product:	Gentoo Security
Classification:	Unclassified
Component:	Kernel (show other bugs)
Hardware:	All Linux

Importance:	High minor (vote)
Assignee:	Gentoo Security

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2005-08-22 05:13 UTC by Thierry Carrez (RETIRED)
Modified:	2005-08-22 05:14 UTC (History)
CC List:	1 user (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Thierry Carrez (RETIRED) gentoo-dev

2005-08-22 05:13:46 UTC

From Ubuntu's latest :

Balazs Scheidler discovered a local Denial of Service vulnerability in
the xfrm_compile_policy() function. By calling setsockopt() with an
invalid xfrm_user policy message, a local attacker could cause the
kernel to write to an array beyond its boundaries, thus causing a
kernel crash. (CAN-2005-2456)

Comment 1 Thierry Carrez (RETIRED) gentoo-dev

2005-08-22 05:14:47 UTC

Oops

*** This bug has been marked as a duplicate of 101435 ***