Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Date: Sat, 21 May 2016 19:21:56 +0800
From: Baozeng Ding <>
Subject: CVE request: -- Linux kernel: Null pointer dereference in

Without checking the pointer to the netlink socket attribute, it could 
cause a null pointer dereference when parsing the nested attributes in 
function tipc_nl_publ_dump. It allows local users to cause a denial of 
service. This vulnerability affects Linux kernel versions from 3.19 to 4.6.


Fixed via:

Introduce by:

Could you please assign a CVE for this vulnerability? Thank you.

Best Regards,
Baozeng Ding,  Alibaba Mobile Security Team

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ