Bug 183416
Summary: | DoS attack possible via nfsservctl | ||||||
---|---|---|---|---|---|---|---|
Product: | Red Hat Enterprise Linux 4 | Reporter: | Peter Staubach <staubach> | ||||
Component: | kernel | Assignee: | Peter Staubach <staubach> | ||||
Status: | CLOSED ERRATA | QA Contact: | Brian Brock <bbrock> | ||||
Severity: | medium | Docs Contact: | |||||
Priority: | medium | ||||||
Version: | 4.0 | CC: | jbaron, steved | ||||
Target Milestone: | --- | ||||||
Target Release: | --- | ||||||
Hardware: | All | ||||||
OS: | Linux | ||||||
Whiteboard: | |||||||
Fixed In Version: | RHSA-2006-0575 | Doc Type: | Bug Fix | ||||
Doc Text: | Story Points: | --- | |||||
Clone Of: | Environment: | ||||||
Last Closed: | 2006-08-10 22:28:50 UTC | Type: | --- | ||||
Regression: | --- | Mount Type: | --- | ||||
Documentation: | --- | CRM: | |||||
Verified Versions: | Category: | --- | |||||
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||
Cloudforms Team: | --- | Target Upstream Version: | |||||
Embargoed: | |||||||
Bug Depends On: | |||||||
Bug Blocks: | 181409 | ||||||
Attachments: |
|
Description
Peter Staubach
2006-02-28 22:15:29 UTC
Created attachment 125474 [details]
Proposed patch
The solution is to not print the message. It is only of vague usefulness anyway. Also cleaned up the error handling in the compat version of the nfsservctl() system call. It was attempting to proceed, even if the attempts to copy in the arguments from the user level had failed. committed in stream U4 build 34.18. A test kernel with this patch is available from http://people.redhat.com/~jbaron/rhel4/ However, there is a *serious* slab corruption issue with this kernel, and thus it should not be released to customers under any circumstances. I'll update this bug when the kernel is stable again. We've identified the corruption as specfic to x86-64 smp kernel builds 34.16 and 34.17. All other builds are safe for consumption. An advisory has been issued which should help the problem described in this bug report. This report is therefore being closed with a resolution of ERRATA. For more information on the solution and/or where to find the updated files, please follow the link below. You may reopen this bug report if the solution does not work for you. http://rhn.redhat.com/errata/RHSA-2006-0575.html |