ACK: [CVE-2011-1767] remotly triggerable oops in gre tunnel
Stefan Bader
stefan.bader at canonical.com
Tue Oct 25 17:50:21 UTC 2011
On 25.10.2011 17:54, Andy Whitcroft wrote:
> CVE-2011-1767
> A denial of service could occur if packets were received while
> the ipip or ip_gre module was being loaded.
>
> The fix for this has hit lucid and later via mainline and stable.
> Following this email are two patches one for lucid/fsl-imx51 and one
> for hardy. The patch for lucid/fsl-imx51 is a simple cherry pick of the
> existing backport for lucid. The patch for hardy is a reimplementation
> for hardy, note that the existing fini function is already in the correct
> order; please review this patch particularly closly.
>
> Proposing for lucid/fsl-imx51 and hardy.
>
> -apw
>
Probably one could have used return err instead of the goto out. But I think it
should be the same as the upstream change.
Acked-by: Stefan Bader <smb at canonical.com>
More information about the kernel-team
mailing list