A flaw was found in the Linux kernel which allows remote attackers to crash the system or corrupt kernel memory, possibly leading to arbitrary code execution, via UDP traffic that triggers an unsafe second checksum calculation during the execution of a recv system call with the MSG_PEEK flag.
udp.c in the Linux kernel before 4.5 allows remote attackers to execute arbitrary code via UDP traffic that triggers an unsafe second checksum calculation during execution of a recv system call with the MSG_PEEK flag.
Patch is currently missing in gentoo-source-4.1.x (already reported, https://www.spinics.net/lists/stable/msg167671.html)
Released in gentoo-sources-4.1.39-r1
Author: Mike Pagano <firstname.lastname@example.org>
Date: Fri Apr 14 15:17:28 2017 -0400
Fix for CVE-2016-10229. Unsafe second checksum calculation in udp.c. See bug #615480.
*** Bug 616922 has been marked as a duplicate of this bug. ***
Author: Alice Ferrazzi <email@example.com>
AuthorDate: Sat Apr 29 14:54:44 2017 +0100
Commit: Alice Ferrazzi <firstname.lastname@example.org>
CommitDate: Sat Apr 29 14:54:44 2017 +0100
profiles/: Mask sys-kernel/vanilla-sources-4.1.39.