Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Message-ID: <CAAeHK+yya7cNPsY97wiss_G9ZCS3sOVbrTSZwxjqXPg7FzyF1A@mail.gmail.com>
Date: Thu, 1 Dec 2016 17:23:31 +0100
From: Andrey Konovalov <andreyknvl@...gle.com>
To: cve-assign@...re.org
Cc: oss-security@...ts.openwall.com, Dmitry Vyukov <dvyukov@...gle.com>, 
	Kostya Serebryany <kcc@...gle.com>
Subject: CVE Request: Linux: net: out-of-bounds due do a signedness issue when
 defragging ipv6

Hi,

There is a bug in the Linux kernel ipv6 implementation, which leads to
an out-of-bounds write on ipv6 packet defragmentation.

A fix was sent upstream:
https://www.spinics.net/lists/netdev/msg407525.html

More details here:
https://groups.google.com/forum/#!topic/syzkaller/GFbGpX7nTEo

Could you assign a CVE for this?

Thanks!

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.