Bug 396751 - (CVE-2007-6694) CVE-2007-6694 /proc/cpuinfo DoS on some ppc machines
CVE-2007-6694 /proc/cpuinfo DoS on some ppc machines
Status: CLOSED ERRATA
Product: Security Response
Classification: Other
Component: vulnerability (Show other bugs)
unspecified
All Linux
medium Severity medium
: ---
: ---
Assigned To: Red Hat Product Security
reported=20071123,public=20071123,sou...
: Security
Depends On: 396771 396781 396791 396801 396811 396821 396831
Blocks:
  Show dependency treegraph
 
Reported: 2007-11-23 08:46 EST by Jan Lieskovsky
Modified: 2011-09-29 18:03 EDT (History)
3 users (show)

See Also:
Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Environment:
Last Closed: 2011-09-29 18:03:56 EDT
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---


Attachments (Terms of Use)
Patch from the reporter. (1.32 KB, patch)
2007-11-23 08:49 EST, Jan Lieskovsky
no flags Details | Diff

  None (edit)
Description Jan Lieskovsky 2007-11-23 08:46:00 EST
Description of problem:

This patch does fix possible NULL pointer dereference
inside of strncmp() if of_get_property() failed. 

This issue went public via: 

http://groups.google.com/group/linux.kernel/browse_thread/thread/d3573f2b305c1e6e?hl=en#d13e0770eadc48c5
Comment 1 Jan Lieskovsky 2007-11-23 08:46:48 EST
This one has not CVE number assigned yet, will update this one as soon as
this gets one. 
Comment 2 Jan Lieskovsky 2007-11-23 08:49:34 EST
Created attachment 267541 [details]
Patch from the reporter.

Attaching patch from the reporter.

Note You need to log in before you can comment on or make changes to this bug.