Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Date: Tue, 22 Feb 2011 16:27:36 -0500 (EST)
From: Josh Bressers <bressers@...hat.com>
To: oss-security@...ts.openwall.com
Cc: "Steven M. Christey" <coley@...us.mitre.org>
Subject: Re: CVE request: kernel: fs/partitions: validate
 map_count in mac partition tables



----- Original Message -----
> On Tue, Feb 22, 2011 at 03:44:29PM -0500, Josh Bressers wrote:
> >
> >
> > ----- Original Message -----
> > > Reported by Timo Warns, "Validate number of blocks in map and remove
> > > redundant variable."
> > >
> > > http://git.kernel.org/linus/fa7ea87a057958a8b7926c1a60a3ca6d696328ed
> > > https://bugzilla.redhat.com/show_bug.cgi?id=679282
> > >
> >
> > I don't understand the security implication of this bug. Can you
> > explain it?
> 
> Incorrectly formed mac partition tables could cause bad things to happen
> when it was automatically scanned after plugging in a device with this
> type of partition table on it.
> 

This is good enough for me. Please use CVE-2011-1010.

Thanks.

-- 
    JB

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ