blob: 64a7d8b117f03f46a2e0e60208c8e7377b5e8fa2 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
|
Candidate: CVE-2003-0643
References:
http://www.ultramonkey.org/bugs/cve/CAN-2003-0643.shtml
http://www.ultramonkey.org/bugs/cve-patch/CAN-2003-0643.patch
http://gentoo.kems.net/gentoo-x86-portage/sys-kernel/gentoo-sources/ChangeLog
http://mirror.clarkson.edu/pub/distributions/gentoo-portage/sys-kernel/wolk-sources/ChangeLog
http://ftp.belnet.be/linux/gentoo-portage/sys-kernel/gentoo-sources/files/gentoo-sources-2.4.CAN-2003-0643.patch
Description:
Integer signedness error in the Linux Socket Filter implementation (filter.c)
in Linux 2.4.3-pre3 to 2.4.22-pre10 allows attackers to cause a denial of
service (crash).
Notes:
Fixed before 2.6.0:
http://linux.bkbits.net:8080/linux-2.4/cset@3f216072qjoeL8BVUjH-swPkd1CRgA?nav=index.html|src/|src/net|src/net/core|related/net/core/filter.c
Bugs:
upstream: released (2.4.22-pre10)
linux-2.6: N/A
2.6.8-sarge-security: N/A
2.4.27-sarge-security: N/A
2.4.19-woody-security:
2.4.18-woody-security:
2.4.17-woody-security:
2.4.16-woody-security:
2.4.17-woody-security-hppa:
2.4.17-woody-security-ia64:
|