| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20211022163833.432e90e9@kicinski-fedora-pc1c0hjn.dhcp.thefacebook.com>
Date: Fri, 22 Oct 2021 16:38:33 -0700
From: Jakub Kicinski <kuba@...nel.org>
To: Marcelo Ricardo Leitner <marcelo.leitner@...il.com>,
Xin Long <lucien.xin@...il.com>
Cc: network dev <netdev@...r.kernel.org>, davem@...emloft.net,
linux-sctp@...r.kernel.org, michael.tuexen@...chi.franken.de
Subject: Re: [PATCH net 0/7] sctp: enhancements for the verification tag
On Thu, 21 Oct 2021 22:45:37 -0300 Marcelo Ricardo Leitner wrote:
> On Wed, Oct 20, 2021 at 07:42:40AM -0400, Xin Long wrote:
> > This patchset is to address CVE-2021-3772:
> >
> > A flaw was found in the Linux SCTP stack. A blind attacker may be able to
> > kill an existing SCTP association through invalid chunks if the attacker
> > knows the IP-addresses and port numbers being used and the attacker can
> > send packets with spoofed IP addresses.
> >
> > This is caused by the missing VTAG verification for the received chunks
> > and the incorrect vtag for the ABORT used to reply to these invalid
> > chunks.
> >
> > This patchset is to go over all processing functions for the received
> > chunks and do:
> >
> ...
> >
> > This patch series has been tested with SCTP TAHI testing to make sure no
> > regression caused on protocol conformance.
>
> Acked-by: Marcelo Ricardo Leitner <marcelo.leitner@...il.com>
Applied, thanks.
Powered by blists - more mailing lists