| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Fri, 25 Jul 2008 15:28:34 +0100 From: Gerrit Renker <gerrit@....abdn.ac.uk> To: davem@...emloft.net Cc: dccp@...r.kernel.org, netdev@...r.kernel.org Subject: v2 [net-2.6 PATCH 0-4/7] dccp: Revised ICMP bug fixes Hi Dave, this patch set addresses the two bugs you pointed out in the first revision. And that was very good, because the same problem loomed in another corner: the normal DCCP input receive path did the same unchecked de-referencing. This is documented in patch #5, and increases the number of bugs fixed by this changeset. Patches 1..4 have not changed, they can be viewed online at http://eden-feed.erg.abdn.ac.uk/cgi-bin/gitweb.cgi?p=net-2.6.git;a=summary These patches are new or revised: --------------------------------- Patch #5: Fixes minimum-required length check for DCCP packet input path. Patch #6: Fixes minimum-required length check for ICMPv4 embedded DCCP datagrams Patch #7: Same as patch #5, but for ICMPv6. I have tested these on two different architectures. As per the first revision, this changeset can be pulled both from git://eden-feed.erg.abdn.ac.uk/net-2.6 (subtree `master') and from git://eden-feed.erg.abdn.ac.uk/net-next-2.6 (subtree `master') Thanks a lot for pointing out the bugs, Gerrit -- To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists