blob: ca850ee439cf698fefb8be0bbf4a099f3ee22c51 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
|
Description: The BPF_S_ANC_NLATTR and BPF_S_ANC_NLATTR_NEST extensions fail to check for a minimal message length
References:
http://www.openwall.com/lists/oss-security/2014/05/09/5
Notes:
Thought to be fixed in 3.14.4-1 by patch
bugfix/all/filter-prevent-nla-extensions-to-peek-beyond-the-end.patch,
but two hunks are applied in the same place so the bug is only half-fixed.
Bugs:
upstream: released (3.15-rc2) [05ab8f2647e4221cbdb3856dd7d32bd5407316b3]
2.6.32-upstream-stable: released (2.6.32.64)
sid: released (3.14.5-1)
3.2-wheezy-security: released (3.2.57-3+deb7u2) [bugfix/all/filter-prevent-nla-extensions-to-peek-beyond-the-end.patch]
2.6.32-squeeze-security: released (2.6.32-48squeeze8)
3.2-upstream-stable: released (3.2.60)
|