[CVE-2011-0716] bridge IGMP DOS
Andy Whitcroft
apw at canonical.com
Wed Feb 1 10:28:43 UTC 2012
CVE-2011-0716
A flaw was found in the way the Linux Ethernet bridge
implementation handled certain IGMP (Internet Group Management
Protocol) packets. A local, unprivileged user on a system that
has a network interface in an Ethernet bridge could use this flaw
to crash that system.
This issue was introduced in maverick. Fixes have hit natty and later
via mainline and stable. Following this email is a patch for maverick
and maverick/ti-omap4, this is a simple cherry-pick from the mainline fix.
Proposing for maverick and maverick/ti-omap4.
-apw
More information about the kernel-team
mailing list