Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Wed, 6 May 2015 18:43:53 +0300
From: Vasily Kulikov <segoon@...nwall.com>
To: Solar Designer <solar@...nwall.com>
Cc: Wen Xu <hotdog3645@...il.com>, oss-security@...ts.openwall.com
Subject: Re: CVE request for a fixed bug existed in all
 versions of linux kernel from KeenTeam

Hi,

On Sat, May 02, 2015 at 15:53 +0300, Solar Designer wrote:
> On Sat, May 02, 2015 at 06:31:12PM +0800, Wen Xu wrote:
> > The bug exists in all versions of linux kernel.
> 
> "All" as in "all upstream versions that contain the feature at all
> (3.0+), and likely some backports".  It appears the bug got introduced
> in Vasily's forward-porting of the functionality to newer 2.6.x kernels
> before it finally got merged in this thread:
> 
> https://lkml.org/lkml/2011/5/13/382

I confirm this bug was introduced during forward-porting of the ICMP
patch to the upstream kernel.  The bug is not present in Owl's version
of the patch.

Thanks,

-- 
Vasily Kulikov
http://www.openwall.com - bringing security into open computing environments

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ