Re: [oss-security] CVE request - kernel: bridge br_multicast NULL pointer dereference

From: Josh Bressers <bressers_at_nospam>
Date: Wed Feb 16 2011 - 13:44:08 GMT
To: oss-security@lists.openwall.com

----- Original Message -----
> "Somewhere along the line the NULL check in br_mdb_ip_get went AWOL,
> causing crashes when we receive an IGMP packet with no multicast table
> allocated.
>
> This patch restores it and ensures all br_mdb_*_get functions use it."
>
> http://git.kernel.org/linus/7f285fa78d4b81b8458f05e77fb6b46245121b4e
>
> Did a quick check: net/bridge/br_multicast.c was introduced in
> eb1d1641
> (2.6.34-rc1), the check was removed in 8ef2a9a5 (v2.6.35-rc1), and
> subsequently restored in 7f285fa78d (v2.6.35-rc5).
>

Please use CVE-2011-0709.

Thanks.

-- JB

This message: [ Message body ]
Next message: Josh Bressers: "Re: [oss-security] CVE request - kernel: s390 task_show_regs infoleak"
Previous message: Huzaifa Sidhpurwala: "Re: [oss-security] Re: PHP Exif 64bit Casting Vulnerability, CVE request"
In reply to: Eugene Teo: "[oss-security] CVE request - kernel: bridge br_multicast NULL pointer dereference"
Next in thread: Moritz Muehlenhoff: "Re: [oss-security] CVE request - kernel: bridge br_multicast NULL pointer dereference"
Reply: Moritz Muehlenhoff: "Re: [oss-security] CVE request - kernel: bridge br_multicast NULL pointer dereference"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ]