2
0
mirror of https://github.com/edk2-porting/linux-next.git synced 2024-12-30 08:04:13 +08:00
linux-next/net/netfilter
Patrick McHardy e17df688f7 [NETFILTER] SCTP conntrack: fix infinite loop
fix infinite loop in the SCTP-netfilter code: check SCTP chunk size to
guarantee progress of for_each_sctp_chunk(). (all other uses of
for_each_sctp_chunk() are preceded by do_basic_checks(), so this fix
should be complete.)

Based on patch from Ingo Molnar <mingo@elte.hu>

CVE-2006-1527

Signed-off-by: Patrick McHardy <kaber@trash.net>
Signed-off-by: Linus Torvalds <torvalds@osdl.org>
2006-05-02 17:26:39 -07:00
..
core.c [NETFILTER]: Introduce infrastructure for address family specific operations 2006-04-09 22:25:40 -07:00
Kconfig [NETFILTER]: x_tables: unify IPv4/IPv6 multiport match 2006-04-01 02:22:54 -08:00
Makefile [NETFILTER]: x_tables: unify IPv4/IPv6 multiport match 2006-04-01 02:22:54 -08:00
nf_conntrack_core.c [NETFILTER]: nf_conntrack: kill unused callback init_conntrack 2006-04-24 17:27:31 -07:00
nf_conntrack_ftp.c [NETFILTER]: Rename init functions. 2006-03-28 17:02:48 -08:00
nf_conntrack_l3proto_generic.c [NETFILTER]: nf_conntrack: Fix module refcount dropping too far 2006-04-24 17:27:28 -07:00
nf_conntrack_netlink.c [NETFILTER]: {ip,nf}_conntrack_netlink: fix expectation notifier unregistration 2006-04-01 02:24:48 -08:00
nf_conntrack_proto_generic.c [NETFILTER]: Fix timeout sysctls on big-endian 64bit architectures 2006-01-10 12:54:35 -08:00
nf_conntrack_proto_sctp.c [NETFILTER] SCTP conntrack: fix infinite loop 2006-05-02 17:26:39 -07:00
nf_conntrack_proto_tcp.c [NETFILTER]: Convert conntrack/ipt_REJECT to new checksumming functions 2006-04-09 22:25:42 -07:00
nf_conntrack_proto_udp.c [NETFILTER]: Convert conntrack/ipt_REJECT to new checksumming functions 2006-04-09 22:25:42 -07:00
nf_conntrack_standalone.c [NETFILTER]: Fix section mismatch warnings 2006-04-09 22:25:34 -07:00
nf_internals.h [NETFILTER]: split net/core/netfilter.c into net/netfilter/*.c 2005-08-29 15:51:11 -07:00
nf_log.c [NETFILTER]: Fix compilation when no PROC_FS enabled 2005-08-29 15:56:54 -07:00
nf_queue.c [NETFILTER]: Introduce infrastructure for address family specific operations 2006-04-09 22:25:40 -07:00
nf_sockopt.c [NET]: Identation & other cleanups related to compat_[gs]etsockopt cset 2006-03-20 22:48:35 -08:00
nfnetlink_log.c [NETFILTER]: Fix section mismatch warnings 2006-04-09 22:25:34 -07:00
nfnetlink_queue.c [NETFILTER]: Fix section mismatch warnings 2006-04-09 22:25:34 -07:00
nfnetlink.c [NETFILTER]: ctnetlink: avoid unneccessary event message generation 2006-03-20 18:03:59 -08:00
x_tables.c [NETFILTER]: x_tables: move table->lock initialization 2006-04-24 17:27:33 -07:00
xt_CLASSIFY.c [NETFILTER]: Rename init functions. 2006-03-28 17:02:48 -08:00
xt_comment.c [NETFILTER]: Rename init functions. 2006-03-28 17:02:48 -08:00
xt_connbytes.c [NETFILTER]: Rename init functions. 2006-03-28 17:02:48 -08:00
xt_connmark.c [NETFILTER]: Rename init functions. 2006-03-28 17:02:48 -08:00
xt_CONNMARK.c [NETFILTER]: Rename init functions. 2006-03-28 17:02:48 -08:00
xt_conntrack.c [NETFILTER]: Rename init functions. 2006-03-28 17:02:48 -08:00
xt_dccp.c [NETFILTER]: Rename init functions. 2006-03-28 17:02:48 -08:00
xt_esp.c [NETFILTER]: x_tables: unify IPv4/IPv6 esp match 2006-04-01 02:22:30 -08:00
xt_helper.c [NETFILTER]: Rename init functions. 2006-03-28 17:02:48 -08:00
xt_length.c [NETFILTER]: Rename init functions. 2006-03-28 17:02:48 -08:00
xt_limit.c [NETFILTER]: Rename init functions. 2006-03-28 17:02:48 -08:00
xt_mac.c [NETFILTER]: Rename init functions. 2006-03-28 17:02:48 -08:00
xt_mark.c [NETFILTER]: Rename init functions. 2006-03-28 17:02:48 -08:00
xt_MARK.c [NETFILTER]: Rename init functions. 2006-03-28 17:02:48 -08:00
xt_multiport.c [NETFILTER]: x_tables: unify IPv4/IPv6 multiport match 2006-04-01 02:22:54 -08:00
xt_NFQUEUE.c [NETFILTER]: Rename init functions. 2006-03-28 17:02:48 -08:00
xt_NOTRACK.c [NETFILTER]: Rename init functions. 2006-03-28 17:02:48 -08:00
xt_physdev.c [NETFILTER]: Rename init functions. 2006-03-28 17:02:48 -08:00
xt_pkttype.c [NETFILTER]: Rename init functions. 2006-03-28 17:02:48 -08:00
xt_policy.c [IPSEC]: Kill unused decap state structure 2006-04-01 00:54:16 -08:00
xt_realm.c [NETFILTER]: Rename init functions. 2006-03-28 17:02:48 -08:00
xt_sctp.c [NETFILTER]: Rename init functions. 2006-03-28 17:02:48 -08:00
xt_state.c [NETFILTER]: Rename init functions. 2006-03-28 17:02:48 -08:00
xt_string.c [NETFILTER]: Rename init functions. 2006-03-28 17:02:48 -08:00
xt_tcpmss.c [NETFILTER]: Rename init functions. 2006-03-28 17:02:48 -08:00
xt_tcpudp.c [NETFILTER]: Rename init functions. 2006-03-28 17:02:48 -08:00