[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [FD] [oss-security] CVE-2014-0196: Linux kernel pty layer race condition memory corruption

To: Savio Bot <54v330@xxxxxxxxx>
Subject: Re: [FD] [oss-security] CVE-2014-0196: Linux kernel pty layer race condition memory corruption
From: Solar Designer <solar@xxxxxxxxxxxx>
Date: Mon, 12 May 2014 15:32:28 +0400

On Mon, May 12, 2014 at 04:03:10PM +0530, Savio Bot wrote:
> So is this bug also present in 2.6?

Yes, 2.6.31-rc3 and newer:

http://www.openwall.com/lists/oss-security/2014/05/05/6

Luckily, apparently the bug was not backported to RHEL5:

https://access.redhat.com/security/cve/CVE-2014-0196

"This issue does not affect the versions of the kernel package as
shipped with Red Hat Enterprise Linux 5.

Future kernel updates for Red Hat Enterprise Linux 6 and Red Hat
Enterprise MRG 2 may address this issue."

Alexander

_______________________________________________
Sent through the Full Disclosure mailing list
http://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: http://seclists.org/fulldisclosure/

References:
- Re: [FD] [oss-security] CVE-2014-0196: Linux kernel pty layer race condition memory corruption
  - From: Matthew Daley
- Re: [FD] [oss-security] CVE-2014-0196: Linux kernel pty layer race condition memory corruption
  - From: Matthew Daley
- Re: [FD] [oss-security] CVE-2014-0196: Linux kernel pty layer race condition memory corruption
  - From: Savio Bot

Prev by Date: Re: [FD] [oss-security] CVE-2014-0196: Linux kernel pty layer race condition memory corruption
Next by Date: Re: [FD] [oss-security] CVE-2014-0196: Linux kernel pty layer race condition memory corruption
Previous by thread: Re: [FD] [oss-security] CVE-2014-0196: Linux kernel pty layer race condition memory corruption
Next by thread: [FD] So You Like Pain and Vulnerability Management? New Article.
Index(es):
- Date
- Thread