averello/linux-stable-mirror
1
0
Fork 0
mirror of https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git synced 2026-03-22 11:42:41 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
bdda9dd67445707a39ebb6d2be84dfb89ef0dea1
linux-stable-mirror/net/core
History
Eric Dumazet b98b0bc8c4 net: avoid signed overflows for SO_{SND|RCV}BUFFORCE 
CAP_NET_ADMIN users should not be allowed to set negative
sk_sndbuf or sk_rcvbuf values, as it can lead to various memory
corruptions, crashes, OOM...

Note that before commit 8298193012 ("net: cleanups in
sock_setsockopt()"), the bug was even more serious, since SO_SNDBUF
and SO_RCVBUF were vulnerable.

This needs to be backported to all known linux kernels.

Again, many thanks to syzkaller team for discovering this gem.

Signed-off-by: Eric Dumazet <edumazet@google.com>
Reported-by: Andrey Konovalov <andreyknvl@google.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
2016-12-02 14:10:14 -05:00
..
datagram.c
udp: enable MSG_PEEK at non-zero offset
2016-04-05 16:29:37 -04:00
dev_addr_lists.c
dev_ioctl.c
dev.c
bpf: Fix bpf_redirect to an ipip/ip6tnl dev
2016-11-12 23:38:07 -05:00
devlink.c
devlink: add hardware messages tracing facility
2016-07-12 14:20:18 -07:00
drop_monitor.c
drop_monitor: make genl_multicast_group const
2016-09-01 14:09:00 -07:00
dst_cache.c
dst.c
ethtool.c
net: ethtool: don't require CAP_NET_ADMIN for ETHTOOL_GLINKSETTINGS
2016-11-25 20:23:30 -05:00
fib_rules.c
fib_rules: Added NLM_F_EXCL support to fib_nl_newrule
2016-06-30 08:23:19 -04:00
filter.c
bpf: Fix bpf_redirect to an ipip/ip6tnl dev
2016-11-12 23:38:07 -05:00
flow_dissector.c
flow_dissect: call init_default_flow_dissectors() earlier
2016-11-22 14:44:01 -05:00
flow.c
flowcache: Increase threshold for refusing new allocations
2016-11-23 06:37:09 +01:00
gen_estimator.c
net: sched: do not acquire qdisc spinlock in qdisc/class stats dump
2016-06-07 16:37:14 -07:00
gen_stats.c
Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net
2016-06-10 11:52:24 -07:00
hwbm.c
net: hwbm: Fix unbalanced spinlock in error case
2016-05-25 12:35:09 -07:00
link_watch.c
lwtunnel.c
net: lwtunnel: Handle fragmentation
2016-08-30 22:27:18 -07:00
Makefile
neighbour.c
neigh: allow admin to set NUD_STALE
2016-08-08 15:36:38 -07:00
net_namespace.c
net: check dead netns for peernet2id_alloc()
2016-11-17 11:19:40 -05:00
net-procfs.c
net: remove NETDEV_TX_LOCKED support
2016-04-26 15:53:05 -04:00
net-sysfs.c
net: introduce NETDEV_CHANGE_TX_QUEUE_LEN
2016-07-01 05:32:17 -04:00
net-sysfs.h
net-traces.c
netclassid_cgroup.c
netevent.c
netpoll.c
net: tracepoint napi:napi_poll add work and budget
2016-07-09 18:05:02 -04:00
netprio_cgroup.c
pktgen.c
net: pktgen: remove rcu locking in pktgen_change_name()
2016-10-17 10:52:59 -04:00
ptp_classifier.c
request_sock.c
rtnetlink.c
net/rtnetlink: fix attribute name in nlmsg_size() comments
2016-12-02 10:34:59 -05:00
scm.c
secure_seq.c
skbuff.c
Merge branch 'work.splice_read' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs
2016-10-07 15:36:58 -07:00
sock_diag.c
sock_diag: align nlattr properly when needed
2016-04-26 12:00:48 -04:00
sock_reuseport.c
soreuseport: do not export reuseport_add_sock()
2016-10-18 14:18:23 -04:00
sock.c
net: avoid signed overflows for SO_{SND|RCV}BUFFORCE
2016-12-02 14:10:14 -05:00
stream.c
net: do not export sk_stream_write_space
2016-09-28 20:32:38 -04:00
sysctl_net_core.c
bpf: add generic constant blinding for use in jits
2016-05-16 13:49:32 -04:00
timestamping.c
tso.c
utils.c
net: the space is required before the open parenthesis '('
2016-06-29 05:15:14 -04:00