[PATCH 09/11] tipc: use limited socket backlog CVE-2010-4251
Paolo Pisati
paolo.pisati at canonical.com
Mon Jul 11 14:20:18 UTC 2011
From: Zhu Yi <yi.zhu at intel.com>
BugLink: http://bugs.launchpad.net/bugs/807462
Make tipc adapt to the limited socket backlog change.
Cc: Jon Maloy <jon.maloy at ericsson.com>
Cc: Allan Stephens <allan.stephens at windriver.com>
Signed-off-by: Zhu Yi <yi.zhu at intel.com>
Acked-by: Eric Dumazet <eric.dumazet at gmail.com>
Acked-by: Allan Stephens <allan.stephens at windriver.com>
Signed-off-by: David S. Miller <davem at davemloft.net>
(cherry picked from commit 53eecb1be5ae499d399d2923933937a9ea1a284f)
Signed-off-by: Paolo Pisati <paolo.pisati at canonical.com>
---
net/tipc/socket.c | 6 ++++--
1 files changed, 4 insertions(+), 2 deletions(-)
diff --git a/net/tipc/socket.c b/net/tipc/socket.c
index 8ebf4975..bf4b320 100644
--- a/net/tipc/socket.c
+++ b/net/tipc/socket.c
@@ -1323,8 +1323,10 @@ static u32 dispatch(struct tipc_port *tport, struct sk_buff *buf)
if (!sock_owned_by_user(sk)) {
res = filter_rcv(sk, buf);
} else {
- sk_add_backlog(sk, buf);
- res = TIPC_OK;
+ if (sk_add_backlog_limited(sk, buf))
+ res = TIPC_ERR_OVERLOAD;
+ else
+ res = TIPC_OK;
}
bh_unlock_sock(sk);
--
1.7.5.4
More information about the kernel-team
mailing list