On Tue, Apr 28, 2015 at 01:51:51PM -0600, Chas Williams III wrote: > Upstream commit 6fd99094de2b83d1d4c8457f2c83483b2828e75a > > From: "D.S. Ljungmark" <ljungmark@xxxxxxxx> > > A local route may have a lower hop_limit set than global routes do. > > RFC 3756, Section 4.2.7, "Parameter Spoofing" > > > 1. The attacker includes a Current Hop Limit of one or another small > > number which the attacker knows will cause legitimate packets to > > be dropped before they reach their destination. > > > As an example, one possible approach to mitigate this threat is to > > ignore very small hop limits. The nodes could implement a > > configurable minimum hop limit, and ignore attempts to set it below > > said limit. > > Signed-off-by: D.S. Ljungmark <ljungmark@xxxxxxxx> > Acked-by: Hannes Frederic Sowa <hannes@xxxxxxxxxxxxxxxxxxx> > Signed-off-by: David S. Miller <davem@xxxxxxxxxxxxx> > --- > net/ipv6/ndisc.c | 9 ++++++++- > 1 file changed, 8 insertions(+), 1 deletion(-) Why have you sent this, when your name isn't on the commit at all? What do you want done with this? Have you read Documentation/stable_kernel_rules.txt? confused, greg k-h -- To unsubscribe from this list: send the line "unsubscribe stable" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html