blob: 46e16aab9c6c020454a649e9d14a331c593e2810 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
|
Candidate: CVE-2005-3274
References:
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3274
CONFIRM:http://www.kernel.org/git/?p=linux/kernel/git/marcelo/linux-2.4.git;a=commit;h=e684f066dff5628bb61ad1912de6e8058b5b4c7d
CONFIRM:http://lkml.org/lkml/2005/6/23/249
CONFIRM:http://lkml.org/lkml/2005/6/24/173
Description:
Race condition in ip_vs_conn_flush in Linux 2.6 before 2.6.13 and 2.4
before 2.4.32-pre2, when running on SMP systems, allows local users to
cause a denial of service (null dereference) by causing a connection
timer to expire while the connection table is being flushed before the
appropriate lock is acquired.
Bugs:
upstream: released (2.6.13, 2.4.32-pre2)
linux-2.6: released (2.6.13-1)
2.6.8-sarge-security: released (2.6.8-16sarge1) [net-ipv4-ipvs-conn_tab-race.dpatch]
2.4.27-sarge-security: released (2.4.27-10sarge1)
2.4.19-woody-security:
2.4.18-woody-security:
2.4.17-woody-security:
2.4.16-woody-security:
2.4.17-woody-security-hppa:
2.4.17-woody-security-ia64:
2.4.18-woody-security-hppa:
|
