[Precise/lts-backport-quantal][CVE-2014-0131 0/3] skbuff: skb_segment: orphan frags before copying
Luis Henriques
luis.henriques at canonical.com
Fri Jun 13 11:12:25 UTC 2014
Following this email I'm sending 3 patches that should fix this CVE
for Precise/lts-backport-quantal.
The actual CVE fix is the 3rd patch, which is a Ben Hutchings backport
to 3.2-3.12 kernels[1].
The other 2 patches are included as per Ben's suggestion:
"For branches older than 3.6, this requires cherry-picking commit
a353e0ce0fd4 ('skbuff: add an api to orphan frags'). To avoid breaking
OOT builds of openvswitch, which will use skb_orphan_frags() if
available, it is also necessary to cherry-pick commit dcc0fb782b3a
('skbuff: export skb_copy_ubufs')."
[1] http://thread.gmane.org/gmane.linux.kernel.stable/86634/focus=86996
Michael S. Tsirkin (3):
skbuff: export skb_copy_ubufs
skbuff: add an api to orphan frags
skbuff: skb_segment: orphan frags before copying
include/linux/skbuff.h | 16 ++++++++++++++++
net/core/skbuff.c | 5 ++++-
2 files changed, 20 insertions(+), 1 deletion(-)
--
1.9.1
More information about the kernel-team
mailing list