Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Message-ID: <53D37103.1020301@redhat.com>
Date: Sat, 26 Jul 2014 11:12:35 +0200
From: Daniel Borkmann <dborkman@...hat.com>
To: oss-security@...ts.openwall.com
CC: cve-assign@...re.org, ppandit@...hat.com
Subject: Re: Re: CVE request Linux Kernel: net: SCTP: NULL
 pointer dereference

On 07/26/2014 04:21 AM, cve-assign@...re.org wrote:
...
> Use CVE-2014-5077 for this issue in the sctp_assoc_update function in
> net/sctp/associola.c (not yet patched at
> http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/tree/net/sctp/associola.c).

It's currently in the -net tree [1], I expect a pull request for
mainline to happen quite soon.

Cheers,

Daniel

   [1] http://git.kernel.org/cgit/linux/kernel/git/davem/net.git/commit/?id=1be9a950c646c9092fb3618197f7b6bfb50e82aa

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.