[arch-security] [kernel] CVE-2014-2523 (fixed??) - netfilter: nf_conntrack_dccp: incorrect skb_header_pointer API usages :: FIXED??

Billy McCann thebillywayne at gmail.com
Tue Mar 18 09:17:47 EDT 2014


Greetings all.

CVE-2014-2523 for linux kernel has been assigned.

However, I'm having difficulty finding whether this issue is fixed in the
current (Arch) kernel.  I'm thinking it has been, as the fixing commit was
made on 06/01/2014.

Confirmation requested.

*Relevant info
CVE details:  https://access.redhat.com/security/cve/CVE-2014-2523
Introduced by:
http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=2bc780499aa3
Upstream Fix:
http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=b22f5126a24b


BW
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.archlinux.org/pipermail/arch-security/attachments/20140318/a83f7068/attachment.html>


More information about the arch-security mailing list