blob: 4a9fd3de8a1e3521075f088632a3a8e31a4202d4 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
|
Description: Buffer overflow when copying data from skbuff to userspace
References:
http://www.openwall.com/lists/oss-security/2015/10/27/11
http://patchwork.ozlabs.org/patch/530642/
Notes:
For all stable kernels before v3.19 which have backported commit
89c22d8c3b27 ("net: Fix skb csum races when peeking") but are lacking
the ioviter conversion.
.
Only 3.16.7-ckt17-1 (jessie-p-u) is still affected and needs to be updated.
Bugs:
upstream: N/A "Vulnerable code not present"
3.16-upstream-stable: released (3.16.7-ckt19) [fa89ae5548ed282f0ceb4660b3b93e4e2ee875f3]
3.2-upstream-stable: released (3.2.73) [net-add-length-argument-to-skb_copy_and_csum_datagram_iovec.patch]
2.6.32-upstream-stable: N/A "Vulnerable code not present"
sid: N/A "Vulnerable code not present"
3.16-jessie-security: N/A "Vulnerable code not present"
3.2-wheezy-security: N/A "Vulnerable code not present"
2.6.32-squeeze-security: N/A "Vulnerable code not present"
|
