Bug 227495

Summary: CVE-2007-0006 Key serial number collision problem
Product: Red Hat Enterprise Linux 4 Reporter: Marcel Holtmann <holtmann>
Component: kernelAssignee: David Howells <dhowells>
Status: CLOSED ERRATA QA Contact: Brian Brock <bbrock>
Severity: high Docs Contact:
Priority: medium    
Version: 4.0CC: jbaron, security-response-team
Target Milestone: ---Keywords: Security
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard: impact=important,source=kernelbugzilla,reported=20070206,public=20061221
Fixed In Version: RHSA-2007-0085 Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2007-02-27 07:56:34 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Attachments:
Description Flags
Patch to fix key serial number collision problem in RHEL4 none

Description Marcel Holtmann 2007-02-06 13:56:06 UTC 
The key serial number collision avoidance code is wrong.

This didn't use to be a problem as the key serial numbers were allocated from 
a simple incremented counter, and you'd have to go through 2 billion keys 
before encountering a collision.

However, now that random numbers are used instead, collisions are much more 
likely.

http://bugzilla.kernel.org/show_bug.cgi?id=7727
Comment 2 David Howells 2007-02-06 14:50:21 UTC 
Created attachment 147468 [details]
Patch to fix key serial number collision problem in RHEL4
Comment 5 Jason Baron 2007-02-19 22:48:49 UTC 
committed in stream E5 build 42.0.10. A test kernel with this patch is available
from http://people.redhat.com/~jbaron/rhel4/
Comment 7 RHEL Program Management 2007-02-20 15:04:02 UTC 
This request was evaluated by Red Hat Product Management for inclusion in a Red
Hat Enterprise Linux maintenance release.  Product Management has requested
further review of this request by Red Hat Engineering, for potential
inclusion in a Red Hat Enterprise Linux Update release for currently deployed
products.  This request is not yet committed for inclusion in an Update
release.
Comment 10 Red Hat Bugzilla 2007-02-27 07:56:35 UTC 
An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on the solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.

http://rhn.redhat.com/errata/RHSA-2007-0085.html
Comment 11 Jason Baron 2007-02-27 20:17:30 UTC 
committed in stream U5 build 49. A test kernel with this patch is available from
http://people.redhat.com/~jbaron/rhel4/