Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Message-ID: <CAAeHK+xqSzMxjrs=DX9RVxiJrRKkWq22tLybcKMmFs4ZQZz=Ag@mail.gmail.com>
Date: Mon, 6 Feb 2017 13:02:34 +0100
From: Andrey Konovalov <andreyknvl@...gle.com>
To: cve-assign@...re.org, oss-security@...ts.openwall.com
Cc: Dmitry Vyukov <dvyukov@...gle.com>, Eric Dumazet <edumazet@...gle.com>, 
	syzkaller <syzkaller@...glegroups.com>, Kostya Serebryany <kcc@...gle.com>
Subject: CVE Request: Linux: ip6_gre: invalid reads in ip6gre_err()

Hi,

There's a bug in the Linux kernel ipv6 implementation which allows a
remote attacker to trigger an out-of-bounds access.

Upsteam fix:
https://git.kernel.org/cgit/linux/kernel/git/davem/net.git/commit/?id=7892032cfe67f4bde6fc2ee967e45a8fbaf33756

Could you assign a CVE for this?

Thanks!

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.