[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[plamo:26735] linux-2.6.15.1が出ています。
-
From:名倉昭一
-
Date:Sun, 15 Jan 2006 17:38:49 +0900 (JST)
- Subject: [plamo:26735] linux-2.6.15.1が出ています。
- From: 名倉昭一<nagura-s@xxxxxxxxxxxx>
- Date: Sun, 15 Jan 2006 17:39:54 +0900
名倉です。
linux-2.6.15.1が出ています。
以下はChangeLogの抜粋です。
commit 7abeff5a23abb2d0edc54cc1cc3acaf886ea98ca
Author: Martin Murray <murrayma@citi.umich.edu>
Date: Tue Jan 10 21:02:29 2006 -0800
[PATCH] Fix DoS in netlink_rcv_skb() (CVE-2006-0035)
Sanity check nlmsg_len during netlink_rcv_skb. An nlmsg_len == 0 can
cause infinite loop in kernel, effectively DoSing machine. Noted by
Martin Murray.
Signed-off-by: Chris Wright <chrisw@sous-sol.org>
Signed-off-by: David S. Miller <davem@davemloft.net>
commit 1cc7060e107b1dbb4a537cb20af949ffadb01222
Author: Patrick McHardy <kaber@trash.net>
Date: Tue Jan 10 02:00:07 2006 +0100
[PATCH] Fix another crash in ip_nat_pptp (CVE-2006-0037)
The PPTP NAT helper calculates the offset at which the packet needs
to be mangled as difference between two pointers to the header. With
non-linear skbs however the pointers may point to two seperate buffers
on the stack and the calculation results in a wrong offset beeing
used.
Signed-off-by: Patrick McHardy <kaber@trash.net>
Signed-off-by: Chris Wright <chrisw@sous-sol.org>
commit a81954faaf6fdbf1fd8a1ef03f2d75e01f56a974
Author: Patrick McHardy <kaber@trash.net>
Date: Tue Jan 10 02:00:07 2006 +0100
[PATCH] Fix crash in ip_nat_pptp (CVE-2006-0036)
When an inbound PPTP_IN_CALL_REQUEST packet is received the
PPTP NAT helper uses a NULL pointer in pointer arithmentic to
calculate the offset in the packet which needs to be mangled
and corrupts random memory or crashes.
Signed-off-by: Patrick McHardy <kaber@trash.net>
Signed-off-by: Chris Wright <chrisw@sous-sol.org>
[検索ページ]
[メール一覧]
Plamo ML 公開システム