** Changed in: linux (Ubuntu Precise)
Status: New => Fix Committed
** Description changed:
- Network-related panic
+ A certain Debian patch to the IPv6 implementation in the Linux kernel
+ 3.2.x through 3.2.63 does not properly validate arguments in
+ ipv6_select_ident function calls, which allows local users to cause a
+ denial of service (NULL pointer dereference and system crash) by
+ leveraging (1) tun or (2) macvtap device access.
Break-Fix: 73f156a6e8c1074ac6327e0abd1169e95eb66463
916e4cf46d0204806c062c8c6c4d1f633852c5b6
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1388974
Title:
CVE-2014-7207
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1388974/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
