diff options
| author | Moritz Muehlenhoff <jmm@debian.org> | 2009-10-20 21:46:22 +0000 |
|---|---|---|
| committer | Moritz Muehlenhoff <jmm@debian.org> | 2009-10-20 21:46:22 +0000 |
| commit | 5662f0b2a69d60db40460e71293e7d6a5f1851b1 (patch) | |
| tree | c36fba9715ef3ae955a2665f49e7c0f002103bd5 /retired/CVE-2009-1243 | |
| parent | c1f4a4e3307253a711eb1731f022c3b0c6f398d6 (diff) | |
retire more issues
git-svn-id: svn+ssh://svn.debian.org/svn/kernel-sec@1530 e094ebfe-e918-0410-adfb-c712417f3574
Diffstat (limited to 'retired/CVE-2009-1243')
| -rw-r--r-- | retired/CVE-2009-1243 | 24 |
1 files changed, 24 insertions, 0 deletions
diff --git a/retired/CVE-2009-1243 b/retired/CVE-2009-1243 new file mode 100644 index 00000000..927c696e --- /dev/null +++ b/retired/CVE-2009-1243 @@ -0,0 +1,24 @@ +Candidate: CVE-2009-1243 +Description: + net/ipv4/udp.c in the Linux kernel before 2.6.29.1 performs an unlocking + step in certain incorrect circumstances, which allows local users to cause + a denial of service (panic) by reading zero bytes from the /proc/net/udp + file and unspecified other files, related to the "udp seq_file infrastructure." +References: + http://openwall.com/lists/oss-security/2009/04/01/4 + http://vigilance.fr/vulnerability/Linux-kernel-denial-of-service-via-proc-net-udp-8586 + http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=30842f2989aacfaba3ccb39829b3417be9313dbe + http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.29.1 +Ubuntu-Description: +Notes:645ca708 + jmm> Introduced in 645ca708, so only affects >= 2.6.28 +Bugs: +upstream: released (2.6.29.1) +linux-2.6: released (2.6.29-2) +2.6.18-etch-security: N/A +2.6.24-etch-security: N/A +2.6.26-lenny-security: N/A +2.6.15-dapper-security: +2.6.22-gutsy-security: +2.6.24-hardy-security: +2.6.27-intrepid-security: |