Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 235221 (CVE-2008-3276) - Linux dccp: change L/R must have at least one byte in the dccpsf_val field (CVE-2008-3276)
Summary: Linux dccp: change L/R must have at least one byte in the dccpsf_val field (C...
Status: RESOLVED FIXED
Alias: CVE-2008-3276
Product: Gentoo Security
Classification: Unclassified
Component: Kernel (show other bugs)
Hardware: All Linux
: High normal (vote)
Assignee: Gentoo Security
URL: http://git.kernel.org/?p=linux/kernel...
Whiteboard: [linux >=2.6.17 <2.6.25.16] [linux >=...
Keywords:
Depends on:
Blocks:
 
Reported: 2008-08-19 20:13 UTC by Robert Buchholz (RETIRED)
Modified: 2013-09-05 03:43 UTC (History)
1 user (show)

See Also:
Package list:
Runtime testing required: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Robert Buchholz (RETIRED) gentoo-dev 2008-08-19 20:13:23 UTC
CVE-2008-3276 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-3276):
  Integer overflow in the dccp_setsockopt_change function in net/dccp/proto.c
  in the Datagram Congestion Control Protocol (DCCP) subsystem in the Linux
  kernel 2.6.17-rc1 through 2.6.26.2 allows remote attackers to cause a denial
  of service (panic) via a crafted integer value, related to Change L and
  Change R options without at least one byte in the dccpsf_val field.
Comment 1 kfm 2009-07-20 19:50:30 UTC
Status whiteboard was incorrect - updated. hardened-kernel unaffected at present time. Removing alias.

PS: genpatches-2.6.25-11 added 2.6.25.16 and genpatches-2.6.26-3 added 2.6.26.3