oss-sec mailing list archives

CVE Request: Linux: signed overflows for SO_{SND|RCV}BUFFORCE

From: Andrey Konovalov <andreyknvl () google com>
Date: Sat, 3 Dec 2016 00:29:12 +0100

Hi!

There's a bug in SO_{SND|RCV}BUFFORCE setsockopt() implementation,
which allows CAP_NET_ADMIN users to cause memory corruption.

The fix is upstream:
https://github.com/torvalds/linux/commit/b98b0bc8c431e3ceb4b26b0dfc8db509518fb290

Could you assign a CVE for this?

Thanks!

Current thread:

CVE Request: Linux: signed overflows for SO_{SND|RCV}BUFFORCE Andrey Konovalov (Dec 02)
- Re: CVE Request: Linux: signed overflows for SO_{SND|RCV}BUFFORCE cve-assign (Dec 02)