We have moved to a new Sailfish OS Forum. Please start new discussions there.

Revision history [back]

click to hide/show revision 1
initial version

posted 2017-04-03 23:03:05 +0200

Remote code execution vulnerability in kernel networking subsystem CVE-2016-10229

udp: properly support MSG_PEEK with truncated buffers

this remote attackable vulnerability was patched in 3.4.113 and this patch should be added to sfos kernel as fast as possible...

Remote code execution vulnerability in kernel networking subsystem CVE-2016-10229

udp: properly support MSG_PEEK with truncated buffers

this remote attackable vulnerability was patched in 3.4.113 and this patch should be added to sfos kernel as fast soon as possible...

Remote code execution vulnerability in kernel networking subsystem CVE-2016-10229

udp: properly support MSG_PEEK with truncated buffers

this critical remote attackable vulnerability was patched in 3.4.113 and this patch should be added to sfos kernel as soon as possible...possible ( source: Google Android security bulletin )...

Description ( NVD ): udp.c in the Linux kernel before 4.5 allows remote attackers to execute arbitrary code via UDP traffic that triggers an unsafe second checksum calculation during execution of a recv system call with the MSG_PEEK flag.