This is a note to let you know that I've just added the patch titled
net: Zero terminate ifr_name in dev_ifname().
to the 4.12-stable tree which can be found at:
http://www.kernel.org/git/?p=linux/kernel/git/stable/stable-queue.git;a=summary
The filename of the patch is:
net-zero-terminate-ifr_name-in-dev_ifname.patch
and it can be found in the queue-4.12 subdirectory.
If you, or anyone else, feels it should not be added to the stable tree,
please let <stable@xxxxxxxxxxxxxxx> know about it.
>From foo@baz Tue Aug 8 16:27:29 PDT 2017
From: "David S. Miller" <davem@xxxxxxxxxxxxx>
Date: Wed, 19 Jul 2017 13:33:24 -0700
Subject: net: Zero terminate ifr_name in dev_ifname().
From: "David S. Miller" <davem@xxxxxxxxxxxxx>
[ Upstream commit 63679112c536289826fec61c917621de95ba2ade ]
The ifr.ifr_name is passed around and assumed to be NULL terminated.
Signed-off-by: David S. Miller <davem@xxxxxxxxxxxxx>
Signed-off-by: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
---
net/core/dev_ioctl.c | 1 +
1 file changed, 1 insertion(+)
--- a/net/core/dev_ioctl.c
+++ b/net/core/dev_ioctl.c
@@ -28,6 +28,7 @@ static int dev_ifname(struct net *net, s
if (copy_from_user(&ifr, arg, sizeof(struct ifreq)))
return -EFAULT;
+ ifr.ifr_name[IFNAMSIZ-1] = 0;
error = netdev_get_name(net, ifr.ifr_name, ifr.ifr_ifindex);
if (error)
Patches currently in stable-queue which might be from davem@xxxxxxxxxxxxx are
queue-4.12/ipv4-ipv6-initialize-treq-txhash-in-cookie_v_check.patch
queue-4.12/openvswitch-fix-potential-out-of-bound-access-in-parse_ct.patch
queue-4.12/ipv6-don-t-increase-ipstats_mib_fragfails-twice-in-ip6_fragment.patch
queue-4.12/net-bonding-fix-transmit-load-balancing-in-balance-alb-mode.patch
queue-4.12/sparc64-register-hugepages-during-arch-init.patch
queue-4.12/sctp-don-t-dereference-ptr-before-leaving-_sctp_walk_-params-errors.patch
queue-4.12/net-ethernet-nb8800-handle-all-4-rgmii-modes-identically.patch
queue-4.12/udp6-fix-socket-leak-on-early-demux.patch
queue-4.12/sctp-fix-the-check-for-_sctp_walk_params-and-_sctp_walk_errors.patch
queue-4.12/packet-fix-use-after-free-in-prb_retire_rx_blk_timer_expired.patch
queue-4.12/rtnetlink-allocate-more-memory-for-dev_set_mac_address.patch
queue-4.12/tcp_bbr-remove-sk_pacing_rate-0-transient-during-init.patch
queue-4.12/tcp_bbr-introduce-bbr_bw_to_pacing_rate-helper.patch
queue-4.12/bonding-commit-link-status-change-after-propose.patch
queue-4.12/virtio_net-fix-truesize-for-mergeable-buffers.patch
queue-4.12/ipv4-fib-fix-null-pointer-deref-during-fib_sync_down_dev.patch
queue-4.12/sparc64-measure-receiver-forward-progress-to-avoid-send-mondo-timeout.patch
queue-4.12/sparc64-fix-exception-handling-in-ultrasparc-iii-memcpy.patch
queue-4.12/dccp-fix-a-memleak-that-dccp_ipv6-doesn-t-put-reqsk-properly.patch
queue-4.12/tcp_bbr-introduce-bbr_init_pacing_rate_from_rtt-helper.patch
queue-4.12/sparc64-prevent-perf-from-running-during-super-critical-sections.patch
queue-4.12/revert-rtnetlink-do-not-generate-notifications-for-changeaddr-event.patch
queue-4.12/net-dsa-b53-add-missing-arl-entries-for-bcm53125.patch
queue-4.12/dccp-fix-a-memleak-that-dccp_ipv4-doesn-t-put-reqsk-properly.patch
queue-4.12/wireless-wext-terminate-ifr-name-coming-from-userspace.patch
queue-4.12/net-dsa-mv88e6xxx-enable-cmode-config-support-for-6390x.patch
queue-4.12/mcs7780-fix-initialization-when-config_vmap_stack-is-enabled.patch
queue-4.12/net-zero-terminate-ifr_name-in-dev_ifname.patch
queue-4.12/tcp_bbr-init-pacing-rate-on-first-rtt-sample.patch
queue-4.12/net-phy-correctly-process-phy_halted-in-phy_stop_machine.patch
queue-4.12/ipv6-avoid-overflow-of-offset-in-ip6_find_1stfragopt.patch
queue-4.12/dccp-fix-a-memleak-for-dccp_feat_init-err-process.patch
queue-4.12/ipv4-initialize-fib_trie-prior-to-register_netdev_notifier-call.patch
queue-4.12/sctp-fix-an-array-overflow-when-all-ext-chunks-are-set.patch
queue-4.12/tcp_bbr-cut-pacing-rate-only-if-filled-pipe.patch