Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Mon, 22 Sep 2014 18:43:19 +0530 (IST)
From: P J P <ppandit@...hat.com>
To: Open Source Security <oss-security@...ts.openwall.com>
cc: Steve French <sfrench@...ba.org>
Subject: Re: CVE request: [CIFS] Possible null ptr deref in
 SMB2_tcon

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

   Hello Raphael,

+-- On Wed, 17 Sep 2014, Raphael Geissert wrote --+
| Commit 18f39e7b[1] of the linux kernel repository fixes a remote null
| pointer dereference on the client when it resolves DFS referrals but
| the server deletes the IPC$ share.

  IIUC, this would occur while mounting a remote share, right? mount(2) would 
be a privileged operation on the client.

Thank you.
- --
Prasad J Pandit / Red Hat Product Security Team
47AF CE69 3A90 54AA 9045 1053 DD13 3D32 FE5B 041F

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1

iQIcBAEBAgAGBQJUICBvAAoJEN0TPTL+WwQfkeoP/0S5bandiEWUbwjosPyXPhip
oHlYjjKztzTpQ6fQC0+nkppZdLSF9O5gkwXjy0qqgOt6woTuMbJLz2hD1Ea/rRAC
JHoKZDbE97+mc6biauq+Is12h0wbSyhCS+McX2i3ftVg9Qwr2Hv/dV3POveRk3/f
emXTbdQbDAOxqqsX7QqtlRDIv1m071wtKcE+sOYrlS+X75f3L94PEz8OJMzM+f/Y
CvZd1HB0ml9VVTFbmI640yBTF9zApVJbzYdKoVNNkh0RKD4awmHQWxCZSuJQn7Aq
KWCye+eJEJXeeBm3CKYHFtjeXPrhQx0a35c1yGPma7Hf+NzVk4J1S/qdZYGnRM8y
oyaPkbNrnpDZu4SlvKOXJCvd52Xzg50qr9tzgfv/NPtkezliKDswcNdVOtEA+gOp
40dbBBT5o9lbQ/Wbj+QnCy+9lW+RqTg9pezS9cD0zsI7iIlnU47SYtSQZoKLjG9w
Tpicr/pXS3n7Bfa2+bGZUGohcjluNub8GkQMfXidYEyhABFxViugEOf3PVrA0KcB
jR6d2D/Skl0+gnr2RDAQcJle7AclPDxOYgOwAnUihn0xCohwAgWzMHkhxH5eXxfq
9gE6PM/ewASR+aDlafUEQcukKixQFp/sSi4+/eHbKbTjAP+mJpeE3rX2OSgKCDJH
Kfg9bJ75KJ5Zal1/aAr8
=w6WX
-----END PGP SIGNATURE-----

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ