Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Message-ID: <20150506154353.GA7500@cachalot>
Date: Wed, 6 May 2015 18:43:53 +0300
From: Vasily Kulikov <segoon@...nwall.com>
To: Solar Designer <solar@...nwall.com>
Cc: Wen Xu <hotdog3645@...il.com>, oss-security@...ts.openwall.com
Subject: Re: CVE request for a fixed bug existed in all
 versions of linux kernel from KeenTeam

Hi,

On Sat, May 02, 2015 at 15:53 +0300, Solar Designer wrote:
> On Sat, May 02, 2015 at 06:31:12PM +0800, Wen Xu wrote:
> > The bug exists in all versions of linux kernel.
> 
> "All" as in "all upstream versions that contain the feature at all
> (3.0+), and likely some backports".  It appears the bug got introduced
> in Vasily's forward-porting of the functionality to newer 2.6.x kernels
> before it finally got merged in this thread:
> 
> https://lkml.org/lkml/2011/5/13/382

I confirm this bug was introduced during forward-porting of the ICMP
patch to the upstream kernel.  The bug is not present in Owl's version
of the patch.

Thanks,

-- 
Vasily Kulikov
http://www.openwall.com - bringing security into open computing environments

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.