FAQ Search Today's Posts Mark Forums Read
» Video Reviews

» Linux Archive

Linux-archive is a website aiming to archive linux email lists and to make them easily accessible for linux users/developers.


» Sponsor

» Partners

» Sponsor

Go Back   Linux Archive > Ubuntu > Ubuntu Kernel Team

 
 
LinkBack Thread Tools
 
Old 07-07-2011, 01:23 PM
Tim Gardner
 
Default APPLIED: netfilter: ipt_CLUSTERIP: fix buffer overflow

On 07/07/2011 03:28 AM, Andy Whitcroft wrote:

CVE-2011-2534
Buffer overflow in the clusterip_proc_write function in
net/ipv4/netfilter/ipt_CLUSTERIP.c in the Linux kernel before
2.6.39 might allow local users to cause a denial of service or
have unspecified other impact via a crafted write operation,
related to string data that lacks a terminating '' character.

This bug has already been fixed via mainline and stable for the latest
releases, or by Paolo for the ARM branches. Hardy is the only release
still affected. Following this email is a patch for Hardy which is a
clean cherry-pick from upstream.

Proposing for SRU to hardy.

-apw




--
Tim Gardner tim.gardner@canonical.com

--
kernel-team mailing list
kernel-team@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/kernel-team
 

Thread Tools




All times are GMT. The time now is 04:50 PM.

VBulletin, Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO ©2007, Crawlability, Inc.
Copyright 2007 - 2008, www.linux-archive.org