[flashboot] Kernel panic 4.4-current

Massimo Lusetti massimo at cedoc.mo.it
Wed Apr 29 17:36:26 EST 2009


On Thu, 23 Apr 2009 15:34:31 +0100
Stuart Henderson <stu at spacehopper.org> wrote:

> try a newer kernel, I think some pool corruption was fixed since then.

I'm preparing to upgrade a whole bunch of box to 4.5 in the mean time i
would like to ask if the panic could be caused by:

012: RELIABILITY FIX: April 8, 2009   All architectures
The OpenSSL ASN.1 handling code could be forced to perform invalid
memory accesses through the use of certain invalid strings
(CVE-2009-0590) or under certain error conditions triggerable by
invalid ASN.1 structures (CVE-2009-0789). These vulnerabilities could
be exploited to achieve a denial-of-service. A more detailed
description of these problems is available in the OpenSSL security
advisory, but note that the other issue described there "Incorrect
Error Checking During CMS verification" relates to code not enabled in
OpenBSD. A source code patch exists which remedies this problem.


Regards

-- 
Massimo


More information about the flashboot mailing list