Date: Fri, 12 Nov 2010 08:19:57 -0500 (EST) From: Josh Bressers <bressers@...hat.com> To: oss-security@...ts.openwall.com Cc: "Steven M. Christey" <coley@...us.mitre.org> Subject: Re: CVE request: kernel: possible kernel oops from user MSS ----- "Eugene Teo" <eugene@...hat.com> wrote: > With commit f5fff5dc8a7a3f395b0525c02ba92c95d42b7390, a user program > can pass in TCP_MAXSEG of 12 (or TCPOLEN_TSTAMP_ALIGNED), and cause > kernel oops with division by 0 in tcp_select_initial_window. > > Proposed patch: > http://www.spinics.net/lists/netdev/msg146495.html > > Reference: > http://www.spinics.net/lists/netdev/msg146405.html Please use CVE-2010-4165. Thanks. -- JB
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.