Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Date: Wed, 08 Apr 2009 15:58:55 +0800
From: Eugene Teo <>
CC: Willy Tarreau <>
Subject: CVE-2009-1265 kernel: af_rose/x25: Sanity check the maximum user
 frame size

{nr,rose,x25}_sendmsg() functions need to have sanity checks on the
packet size, otherwise the sizes can wrap and end up sending garbage.

This affects both 2.4.x and 2.6.x if CONFIG_{NETROM,ROSE,X25} are enabled.

Thanks, Eugene
Eugene Teo, RHCA, RHCSS / Red Hat Security Response Team

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.