Date: Fri, 12 Nov 2010 08:19:57 -0500 (EST) From: Josh Bressers <bressers@...hat.com> To: oss-security@...ts.openwall.com Cc: "Steven M. Christey" <coley@...us.mitre.org> Subject: Re: CVE request: kernel: possible kernel oops from user MSS ----- "Eugene Teo" <eugene@...hat.com> wrote: > With commit f5fff5dc8a7a3f395b0525c02ba92c95d42b7390, a user program > can pass in TCP_MAXSEG of 12 (or TCPOLEN_TSTAMP_ALIGNED), and cause > kernel oops with division by 0 in tcp_select_initial_window. > > Proposed patch: > http://www.spinics.net/lists/netdev/msg146495.html > > Reference: > http://www.spinics.net/lists/netdev/msg146405.html Please use CVE-2010-4165. Thanks. -- JB
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Powered by Openwall GNU/*/Linux - Powered by OpenVZ