** Description changed: - remote memory corruption in nf_conntrack_proto_dccp.c + net/netfilter/nf_conntrack_proto_dccp.c in the Linux kernel through + 3.13.6 uses a DCCP header pointer incorrectly, which allows remote + attackers to cause a denial of service (system crash) or possibly + execute arbitrary code via a DCCP packet that triggers a call to the (1) + dccp_new, (2) dccp_packet, or (3) dccp_error function. Break-Fix: - b22f5126a24b3b2f15448c3f2a254fc10cbc2b92
-- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1295090 Title: CVE-2014-2523 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1295090/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
