Greg KH <greg@xxxxxxxxx> writes:
> On Mon, Jul 18, 2016 at 04:53:17PM -0400, Charles (Chas) Williams wrote:
>> From: Bjørn Mork <bjorn@xxxxxxx>
>>
>> commit 4d06dd537f95683aba3651098ae288b7cbff8274 upstream.
>>
>> usbnet_link_change will call schedule_work and should be
>> avoided if bind is failing. Otherwise we will end up with
>> scheduled work referring to a netdev which has gone away.
>>
>> Instead of making the call conditional, we can just defer
>> it to usbnet_probe, using the driver_info flag made for
>> this purpose.
>>
>> CVE-2016-3951
>>
>> Fixes: 8a34b0ae8778 ("usbnet: cdc_ncm: apply usbnet_link_change")
>> Reported-by: Andrey Konovalov <andreyknvl@xxxxxxxxx>
>> Suggested-by: Linus Torvalds <torvalds@xxxxxxxxxxxxxxxxxxxx>
>> Signed-off-by: Bjørn Mork <bjorn@xxxxxxx>
>> Signed-off-by: David S. Miller <davem@xxxxxxxxxxxxx>
>> [ciwillia@xxxxxxxxxxx: backported to 3.14: adjusted context]
>> Signed-off-by: Charles (Chas) Williams <ciwillia@xxxxxxxxxxx>
>> ---
>> drivers/net/usb/cdc_ncm.c | 20 +++++---------------
>> 1 file changed, 5 insertions(+), 15 deletions(-)
>
> Another patch that isn't in 4.4-stable, why not?
Probably because I was sloppy when first posting it, and forgot to ask
David to queue it for stable. I see that this has later been requested
by Chas Williams:
https://www.mail-archive.com/netdev@xxxxxxxxxxxxxxx/msg120134.html
Yes, it should go into 4.4-stable.
Bjørn
--
To unsubscribe from this list: send the line "unsubscribe stable" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html