Date: Mon, 22 Sep 2014 18:00:21 +0200 From: Moritz Muehlenhoff <jmm@...ian.org> To: oss-security@...ts.openwall.com Cc: Steve French <sfrench@...ba.org> Subject: Re: CVE request: [CIFS] Possible null ptr deref in SMB2_tcon On Mon, Sep 22, 2014 at 06:43:19PM +0530, P J P wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > Hello Raphael, > > +-- On Wed, 17 Sep 2014, Raphael Geissert wrote --+ > | Commit 18f39e7b of the linux kernel repository fixes a remote null > | pointer dereference on the client when it resolves DFS referrals but > | the server deletes the IPC$ share. > > IIUC, this would occur while mounting a remote share, right? mount(2) would > be a privileged operation on the client. True, but on Debian and derivatives like Ubuntu mount.cifs is usually setuid root. Cheers, Moritz
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Powered by Openwall GNU/*/Linux - Powered by OpenVZ