199227 – Linux Kernel version 2.6.23.1 denial of service

Bug 199227 - Linux Kernel version 2.6.23.1 denial of service

Summary: Linux Kernel version 2.6.23.1 denial of service

Status:	RESOLVED DUPLICATE of bug 198997

Alias:	None

Product:	Gentoo Security
Classification:	Unclassified
Component:	Kernel (show other bugs)
Hardware:	All Linux

Importance:	High major (vote)
Assignee:	Gentoo Security

URL:	http://www.frsirt.com/english/advisor...
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2007-11-15 11:41 UTC by Evgeniy Shishkin
Modified:	2007-11-15 11:48 UTC (History)
CC List:	0 users

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Evgeniy Shishkin 2007-11-15 11:41:17 UTC

As described at CVE-2007-5904. Linux Kernel version 2.6.23.1 and prior have a bug with cifs. A vulnerability has been identified in Linux Kernel, which could be exploited by attackers to cause a denial of service or execute arbitrary code. This issue is caused by a buffer overflow error in the "SendReceive()" [fs/cifs/transport.c] function when processing overly long SMB responses, which could be exploited by a malicious server to crash or compromise an affected system.

A fix is available via GIT :
http://git.kernel.org/?p=linux/kernel/git/sfrench/cifs-2.6.git;a=commit;h=133672efbc1085f9af990bdc145e1822ea93bcf3

Reproducible: Always

Steps to Reproduce:

Comment 1 Robert Buchholz (RETIRED) gentoo-dev

2007-11-15 11:48:34 UTC


*** This bug has been marked as a duplicate of bug 198997 ***