tags 322339 +pending thanks On Wed, Aug 10, 2005 at 11:53:00AM +0200, Moritz Muehlenhoff wrote: > Package: kernel-source-2.6.8 > Severity: important > Tags: security patch > > CAN-2004-2302 describes a kernel DoS through a race condition, that can be > triggered > by overly long sysfs offsets. Please see > http://linux.bkbits.net:8080/linux-2.6/cset%404186a4deVoR88JjTwMa3ZnIp-_YJsA > for description and a patch. 2.4 doesn't seem to use sysfs and it should > already be > fixed in 2.6.12.
Thanks, I have backported and added this to SVN for 2.6.8. Neither 2.6.12 nor 2.4.27 seem vulnerable to me either. -- Horms -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
