ACK with notes: [PATCH] CVE-2011-2525
Stefan Bader
stefan.bader at canonical.com
Mon Oct 10 16:07:22 UTC 2011
On 10.10.2011 14:06, Paolo Pisati wrote:
> CVE-2011-2525
> tc_fill_qdisc() should not be called for builtin qdisc, or it dereference
> a NULL pointer to get device ifindex.
>
> Following this email is a patch for lucid/[master|fsl-imx51|ec2|mvl-dove] and
> another one for hardy.
> This is a simple cherry-pick from mainline plus some cosmetic changes to make
> it apply cleanly.
>
> Paolo Pisati (1):
> net_sched: Fix qdisc_notify() - CVE-2011-2525
>
> net/sched/sch_api.c | 14 +++++++-------
> 1 files changed, 7 insertions(+), 7 deletions(-)
>
Looks like the upstream change. Which is 53b0f08042f04813cd1a7473dacd3edfacb28eb3
btw (reference missing)
More information about the kernel-team
mailing list