 |
|
|
|
| From: | LINUX | | Date: | 19.04.2006 | | Subject: | ChangeLog-2.6.16.8 |
commit aa48603d1ba772d0a2b28ab73098be2119878eba
Author: Greg Kroah-Hartman <gregkh@suse.de>
Date: Tue Apr 18 14:32:07 2006 -0700
Linux 2.6.16.8
commit a0b277b4fdcbc24c26af7c5d019e9448a51c79cf
Author: Stephen Hemminger <shemminger@osdl.org>
Date: Mon Apr 17 17:27:11 2006 -0700
[PATCH] ip_route_input panic fix (CVE-2006-1525)
This fixes http://bugzilla.kernel.org/show_bug.cgi?id=6388
The bug is caused by ip_route_input dereferencing skb->nh.protocol of
the dummy skb passed dow from inet_rtm_getroute (Thanks Thomas for seeing
it). It only happens if the route requested is for a multicast IP
address.
Signed-off-by: Stephen Hemminger <shemminger@osdl.org>
Signed-off-by: David S. Miller <davem@davemloft.net>
Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>
|
|
|
|
|
|
|
|
