Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Date: Mon, 25 Oct 2010 16:36:23 -0700
From: Kees Cook <kees@...ntu.com>
To: oss-security@...ts.openwall.com
Subject: CVE request: kernel: heap contents leak from ETHTOOL_GRXCLSRLALL

This is an uncommon leak I found that was fixed in 2.6.36 here:
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=ae6df5f96a51818d6376da5307d773baeece4014

This is different from CVE-2010-2478, but was introduced at the same time
(0853ad66, 2.6.27-rc1).

Thanks,

-Kees

-- 
Ubuntu Security Team
Kees Cook

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.