Description of problem: All of the SCTP-AUTH socket options could cause a panic if the extension is disabled and the API is envoked. Additionally, there were some additional assumptions that certain pointers would always be valid which may not always be the case. References: http://marc.info/?l=linux-netdev&m=121928747903176&w=2 http://lkml.org/lkml/2008/8/23/49 http://www.openwall.com/lists/oss-security/2008/08/25/1
Proposed upstream patch: http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=5e739d1752aca4e8f3e794d431503bfca3162df4
Created attachment 314907 [details] Upstream patch for this issue
SCTP-AUTH API was introduced in upstream commit 65b07e5d (20070916).
Created attachment 315342 [details] Proposed backported patch for MRG kernel (untested)
Queued for -79
This was addressed via: MRG Realtime for RHEL 5 Server (RHSA-2008:0857)