[prev in list] [next in list] [prev in thread] [next in thread]
List: oss-security
Subject: Re: [oss-security] CVE-2009-2903 kernel: appletalk: denial of service
From: Eugene Teo <eugene () redhat ! com>
Date: 2009-09-17 7:03:40
Message-ID: 4AB1DF4C.2020609 () redhat ! com
[Download RAW message or body]
Eugene Teo wrote:
> Eugene Teo wrote:
>> The check for the ipddpN device in the handle_ip_over_ddp() function
>> returns -NODEV to the atalk_rcv() function when the device does not
>> exist. The atalk_rcv() function then directly returns that value to
>> its caller. There is a missing call to kfree_skb() in these unaccepted
>> IP-DDP datagram that can exhaust the kernel memory eventually. It
>> affects Linux hosts with appletalk and ipddp modules loaded, that are
>> attached to the same link. Thanks to Mark Smith for reporting this
>> issue to us.
>
> Some updates and a quick analysis at:
> https://bugzilla.redhat.com/CVE-2009-2903#c0 and
> http://kbase.redhat.com/faq/docs/DOC-19069
Should be http://kbase.redhat.com/faq/docs/DOC-19077.
Thanks, Eugene
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic