| commit | 25b6badde42165b717e3c232e4992b3f6761920a | |
| author | Patrick McHardy <kaber@trash.net> | |
| Tue, 2 May 2006 21:23:07 +0000 (2 23:23 +0200) | ||
| committer | Greg Kroah-Hartman <gregkh@suse.de> | |
| Tue, 2 May 2006 21:38:21 +0000 (2 14:38 -0700) | ||
| tree | 9ab2cf5e5f54d27a1f0cedac4e992ad609dce525 | treesnapshot (tar.gz zip) |
| parent | 42a46c74c4520174b82a60ac44c15b5525cdf238 | commitdiff |
[PATCH] NETFILTER: SCTP conntrack: fix infinite loop (CVE-2006-1527)
[NETFILTER]: SCTP conntrack: fix infinite loop
fix infinite loop in the SCTP-netfilter code: check SCTP chunk size to
guarantee progress of for_each_sctp_chunk(). (all other uses of
for_each_sctp_chunk() are preceded by do_basic_checks(), so this fix
should be complete.)
Based on patch from Ingo Molnar <mingo@elte.hu>
Signed-off-by: Patrick McHardy <kaber@trash.net>
Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>
[NETFILTER]: SCTP conntrack: fix infinite loop
fix infinite loop in the SCTP-netfilter code: check SCTP chunk size to
guarantee progress of for_each_sctp_chunk(). (all other uses of
for_each_sctp_chunk() are preceded by do_basic_checks(), so this fix
should be complete.)
Based on patch from Ingo Molnar <mingo@elte.hu>
Signed-off-by: Patrick McHardy <kaber@trash.net>
Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>
| net/ipv4/netfilter/ip_conntrack_proto_sctp.c | diffblobblamehistory | |
| net/netfilter/nf_conntrack_proto_sctp.c | diffblobblamehistory |