blob: e311cf408718d454969684b98fcc4d455fc864b4 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
|
Description: aio write triggers integer overflow in some network protocols
References:
https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit?id=c4f4b82694fe48b02f7a881a1797131a6dad1364
https://lkml.org/lkml/2016/2/23/1018
https://code.google.com/p/google-security-research/issues/detail?id=735
Notes:
bwh> An identical issue was previously fixed by commit a70b52ec1aae, but
bwh> commit 41ef4eb8eef8 removed the fix.
Bugs:
upstream: released (4.1-rc1) [4c185ce06dca14f5cea192f5a2c981ef50663f2b]
3.16-upstream-stable: released (3.16.7-ckt26)
3.2-upstream-stable: N/A "Includes previous fix and not the regression"
sid: released (4.1.3-1)
3.16-jessie-security: released (3.16.7-ckt20-1+deb8u4) [bugfix/all/aio-properly-check-iovec-sizes.patch]
3.2-wheezy-security: N/A "Includes previous fix and not the regression"
|
