Date: Sun, 14 Nov 2010 15:56:38 +0100 From: Thomas Pollet <thomas.pollet@...il.com> To: oss-security@...ts.openwall.com Subject: econet iovec Hi, the AF_ECONET sendmsg iovec code also appears to be vulnerable to an integer overflow that will be fixed by the verify_iovec changes in the 2.6.37 kernel. on line 469: size += iov_len Regards, Thomas
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Powered by Openwall GNU/*/Linux - Powered by OpenVZ