lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [day] [month] [year] [list] 
Message-ID: <41370BC6.9090704@starzetz.de>
Date: Thu, 02 Sep 2004 14:02:14 +0200
From: Paul Starzetz <paul@...rzetz.de>
To: Thomas Biege <thomas@...e.de>
Cc: bugtraq@...urityfocus.com
Subject: Re: SUSE Security Announcement: kernel (SUSE-SA:2004:028)


Thomas Biege wrote:

>    Various signedness issues and integer overflows have been fixed within
>    kNFSd and the XDR decode functions of kernel 2.6.
>    These bugs can be triggered remotely by sending a package with a trusted
>    source IP address and a write request with a size greater then 2^31.
>    The result will be a kernel Oops, it is unknown if this bug is otherwise
>    exploitable yet.
>    Kernel 2.4 nfsd code is different but may suffer from the same
>    vulnerability.
>  
>
The iSEC people have read the nfsd code from 2.4 and it seems to be 
vulnerable too, however only authenticated clients could reach the 
problematic places at all. Having a writeable NFS share is probably a 
bad idea anyway...

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ