lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list] 
Date:	Tue, 31 May 2016 14:48:44 +0800
From:	刘长鸣 <charley.ashbringer@...il.com>
To:	linux-kernel@...r.kernel.org
Subject: Vulnerability [CVE-2014-4608] recurs in Linux 3.17.2-4.5

Dear Sir/Madam:
    I'm a postgraduate student majoring in information security and
I'm very interested in software vulnerabilities, I think it's really
fascinating and I'm doing some research about how to find
vulnerabilities automatically. I have done some tests with Linux bug
commits. And  I found that the patch codes ( fixing CVE-2014-4608 )
didn't appear in the version 3.17.2 to 4.5. I'm just wondering if this
means the vulnerability ( CVE-2014-4608 ) recurs in Linux 3.17.2-4.5.
If not, is it fixed in another way?
    Thanks for your time, I'll appreciate it very much if you can give
an answer.

p.s. here is the link to CVE-2014-4608 report
http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=206a81c18401c0cde6e579164f752c4b147324ce

Best regards

ZhiJun DENG
Cluster and Grid Computing Laboratory
HuaZhong University Of Science And Technology
1037 Luoyu Road,Wuhan,430074,China
Tel:+86 - 15527287870

Email:506012274@...com

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ