Bugzilla will be upgraded to version 5.0. The upgrade date is tentatively scheduled for 2 December 2018, pending final testing and feedback.
Bug 229883 - CVE-2007-0006 Key serial number collision problem
CVE-2007-0006 Key serial number collision problem
Product: Red Hat Enterprise Linux 5
Classification: Red Hat
Component: kernel (Show other bugs)
All Linux
medium Severity high
: ---
: ---
Assigned To: Don Howard
Brian Brock
: Security
Depends On:
  Show dependency treegraph
Reported: 2007-02-23 18:04 EST by Linda Wang
Modified: 2018-10-19 18:12 EDT (History)
3 users (show)

See Also:
Fixed In Version: RHSA-2007-0099
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Last Closed: 2007-03-14 11:04:47 EDT
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)

External Trackers
Tracker ID Priority Status Summary Last Updated
Red Hat Product Errata RHSA-2007:0099 normal SHIPPED_LIVE Important: kernel security and bug fix update 2007-03-14 11:04:45 EDT

  None (edit)
Description Linda Wang 2007-02-23 18:04:22 EST
+++ This bug was initially created as a clone of Bug #227497 +++

The key serial number collision avoidance code is wrong.

This didn't use to be a problem as the key serial numbers were allocated from 
a simple incremented counter, and you'd have to go through 2 billion keys 
before encountering a collision.

However, now that random numbers are used instead, collisions are much more 


-- Additional comment from lwang@redhat.com on 2007-02-06 09:23 EST --
upstream patch is here:


-- Additional comment from holtmann@redhat.com on 2007-02-06 09:29 EST --
Created an attachment (id=147467)
Proposed patch from David Howells

-- Additional comment from syeghiay@redhat.com on 2007-02-07 11:20 EST --
This is proposed as a Security Day 0 errata for 5.0.
Cleared rhel-5.0.0 and blocker and set rhel-5.1.0 flag.
Set pm_ack.

-- Additional comment from jturner@redhat.com on 2007-02-23 14:04 EST --
QE ack for RHEL5.
Comment 9 Mike Gahagan 2007-03-09 10:19:33 EST
We haven't been able to reproduce the problem with the reproducer attached to
the rhel 4 version of this bug, but the patch is in the 8.1.1 kernel.

Comment 11 Red Hat Bugzilla 2007-03-14 11:04:47 EDT
An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on the solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.


Note You need to log in before you can comment on or make changes to this bug.