Re: [stable] netfilter fixes for CVE-2016-3134

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



On Wed, Jun 22, 2016 at 12:41:11AM +0100, Ben Hutchings wrote:
> Please cherry-pick these for all branches older than 4.6:
> 
> commit bdf533de6968e9686df777dc178486f600c6e617
> Author: Florian Westphal
> <fw@xxxxxxxxx>
> Date:   Tue Mar 22 18:02:49 2016 +0100
> 
>     netfilter: x_tables: validate e->target_offset early
> 
> commit 6e94e0cfb0887e4013b3b930fa6ab1fe6bb6ba91
> Author: Florian Westphal <fw@xxxxxxxxx>
> Date:   Tue Mar 22 18:02:50 2016 +0100
> 
>     netfilter: x_tables: make sure e->next_offset covers remaining blob size
> 
> commit 54d83fc74aa9ec72794373cb47432c5f7fb1a309
> Author: Florian Westphal <fw@xxxxxxxxx>
> Date:   Tue Mar 22 18:02:52 2016 +0100
> 
>     netfilter: x_tables: fix unconditional helper
> 
> Ben.

Thanks, now applied where relevant.

greg k-h
--
To unsubscribe from this list: send the line "unsubscribe stable" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at  http://vger.kernel.org/majordomo-info.html



[Index of Archives]     [Linux Kernel]     [Kernel Development Newbies]     [Linux USB Devel]     [Video for Linux]     [Linux Audio Users]     [Yosemite Hiking]     [Linux Kernel]     [Linux SCSI]