Back to bug 1393904
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Vladis Dronov | 2016-11-10 15:14:17 UTC | Blocks | 1390621 | |
| Vladis Dronov | 2016-11-10 15:15:31 UTC | Depends On | 1393908 | |
| Vladis Dronov | 2016-11-11 12:19:02 UTC | Alias | CVE-2016-8645 | |
| Vladis Dronov | 2016-11-11 12:19:22 UTC | Summary | kernel: a BUG() statement can be hit in net/ipv4/tcp_input.c | CVE-2016-8645 kernel: a BUG() statement can be hit in net/ipv4/tcp_input.c |
| Vladis Dronov | 2016-11-11 12:55:06 UTC | Doc Text | It was discovered that the Linux kernel since, at least, v4.0 till v4.9-rc1 can hit BUG() statement in tcp_collapse() function after making a number of certain syscalls leading to a possible system crash. | |
| Doc Type | If docs needed, set a value | Bug Fix | ||
| Salvatore Bonaccorso | 2016-11-11 15:48:51 UTC | CC | carnil | |
| Eric Christensen | 2016-11-11 19:56:27 UTC | Doc Text | It was discovered that the Linux kernel since, at least, v4.0 till v4.9-rc1 can hit BUG() statement in tcp_collapse() function after making a number of certain syscalls leading to a possible system crash. | It was discovered that the Linux kernel, from at least v4.0 until v4.9-rc1, can hit BUG() statement in tcp_collapse() function after making a number of certain syscalls leading to a possible system crash. |
| Vladis Dronov | 2016-11-15 14:15:34 UTC | Depends On | 1395256 | |
| Vladis Dronov | 2016-11-15 14:17:29 UTC | Whiteboard | impact=low,public=20161110,reported=20161101,source=researcher,cvss2=2.1/AV:L/AC:L/Au:N/C:N/I:N/A:P,cvss3=4.0/CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L,cwe=CWE-617,rhel-5/kernel=notaffected,rhel-6/kernel=notaffected,rhel-7/kernel=notaffected,rhel-7/kernel-rt=notaffected,mrg-2/realtime-kernel=notaffected,rhelsa-7/arm-kernel=affected,fedora-all/kernel=affected | impact=moderate,public=20161110,reported=20161101,source=researcher,cvss2=2.1/AV:L/AC:L/Au:N/C:N/I:N/A:P,cvss3=4.0/CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L,cwe=CWE-617,rhel-5/kernel=notaffected,rhel-6/kernel=notaffected,rhel-7/kernel=notaffected,rhel-7/kernel-rt=notaffected,mrg-2/realtime-kernel=notaffected,rhelsa-7/arm-kernel=affected,fedora-all/kernel=affected |
| Vladis Dronov | 2016-11-15 14:17:50 UTC | Severity | low | medium |
| Vladis Dronov | 2016-11-15 14:18:06 UTC | Priority | low | medium |
| Vladis Dronov | 2016-11-30 17:11:01 UTC | Whiteboard | impact=moderate,public=20161110,reported=20161101,source=researcher,cvss2=2.1/AV:L/AC:L/Au:N/C:N/I:N/A:P,cvss3=4.0/CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L,cwe=CWE-617,rhel-5/kernel=notaffected,rhel-6/kernel=notaffected,rhel-7/kernel=notaffected,rhel-7/kernel-rt=notaffected,mrg-2/realtime-kernel=notaffected,rhelsa-7/arm-kernel=affected,fedora-all/kernel=affected | impact=moderate,public=20161110,reported=20161101,source=researcher,cvss2=4.9/AV:L/AC:L/Au:N/C:N/I:N/A:C,cvss3=4.0/CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L,cwe=CWE-617,rhel-5/kernel=notaffected,rhel-6/kernel=notaffected,rhel-7/kernel=notaffected,rhel-7/kernel-rt=notaffected,mrg-2/realtime-kernel=notaffected,rhelsa-7/arm-kernel=affected,fedora-all/kernel=affected |
| Vladis Dronov | 2016-11-30 17:11:19 UTC | Whiteboard | impact=moderate,public=20161110,reported=20161101,source=researcher,cvss2=4.9/AV:L/AC:L/Au:N/C:N/I:N/A:C,cvss3=4.0/CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L,cwe=CWE-617,rhel-5/kernel=notaffected,rhel-6/kernel=notaffected,rhel-7/kernel=notaffected,rhel-7/kernel-rt=notaffected,mrg-2/realtime-kernel=notaffected,rhelsa-7/arm-kernel=affected,fedora-all/kernel=affected | impact=moderate,public=20161110,reported=20161101,source=researcher,cvss2=4.9/AV:L/AC:L/Au:N/C:N/I:N/A:C,cvss3=6.2/CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H,cwe=CWE-617,rhel-5/kernel=notaffected,rhel-6/kernel=notaffected,rhel-7/kernel=notaffected,rhel-7/kernel-rt=notaffected,mrg-2/realtime-kernel=notaffected,rhelsa-7/arm-kernel=affected,fedora-all/kernel=affected |
| Vladis Dronov | 2016-11-30 17:16:17 UTC | Doc Text | It was discovered that the Linux kernel, from at least v4.0 until v4.9-rc1, can hit BUG() statement in tcp_collapse() function after making a number of certain syscalls leading to a possible system crash. | It was discovered that the Linux kernel since 3.6-rc1 with 'net.ipv4.tcp_fastopen' set to 1 can hit BUG() statement in tcp_collapse() function after making a number of certain syscalls leading to a possible system crash. |
| Whiteboard | impact=moderate,public=20161110,reported=20161101,source=researcher,cvss2=4.9/AV:L/AC:L/Au:N/C:N/I:N/A:C,cvss3=6.2/CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H,cwe=CWE-617,rhel-5/kernel=notaffected,rhel-6/kernel=notaffected,rhel-7/kernel=notaffected,rhel-7/kernel-rt=notaffected,mrg-2/realtime-kernel=notaffected,rhelsa-7/arm-kernel=affected,fedora-all/kernel=affected | impact=moderate,public=20161110,reported=20161101,source=researcher,cvss2=4.9/AV:L/AC:L/Au:N/C:N/I:N/A:C,cvss3=6.2/CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H,cwe=CWE-617,rhel-5/kernel=notaffected,rhel-6/kernel=notaffected,rhel-7/kernel=affected,rhel-7/kernel-rt=affected,mrg-2/realtime-kernel=affected,rhelsa-7/arm-kernel=affected,fedora-all/kernel=affected | ||
| Vladis Dronov | 2016-11-30 17:18:13 UTC | Depends On | 1400217 | |
| Vladis Dronov | 2016-11-30 17:18:26 UTC | Depends On | 1400218 | |
| Vladis Dronov | 2016-11-30 17:18:36 UTC | Depends On | 1400220 | |
| Wade Mealing | 2016-12-01 23:57:46 UTC | CC | wmealing | |
| Slawomir Czarko | 2016-12-02 08:33:50 UTC | CC | slawomir | |
| PnT Account Manager | 2018-02-07 23:20:20 UTC | CC | agordeev | |
| PnT Account Manager | 2018-07-19 06:21:48 UTC | CC | mguzik | |
| PnT Account Manager | 2018-08-28 22:09:35 UTC | CC | lwang | |
| Eric Sammons | 2019-02-08 14:57:46 UTC | CC | esammons | |
| Product Security DevOps Team | 2019-06-08 03:01:57 UTC | Status | NEW | CLOSED |
| Resolution | --- | ERRATA | ||
| Last Closed | 2019-06-08 03:01:57 UTC | |||
| Product Security DevOps Team | 2019-09-29 13:59:56 UTC | Whiteboard | impact=moderate,public=20161110,reported=20161101,source=researcher,cvss2=4.9/AV:L/AC:L/Au:N/C:N/I:N/A:C,cvss3=6.2/CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H,cwe=CWE-617,rhel-5/kernel=notaffected,rhel-6/kernel=notaffected,rhel-7/kernel=affected,rhel-7/kernel-rt=affected,mrg-2/realtime-kernel=affected,rhelsa-7/arm-kernel=affected,fedora-all/kernel=affected |
Back to bug 1393904