[PATCH 0/2] [SRU][Trusty] Fix for CVE-2017-6345
Paolo Pisati
paolo.pisati at canonical.com
Tue Jul 24 08:40:48 UTC 2018
https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-6345.html
Patch 01 is a clean cherry-pick and correspond to the upstream fix.
Patch 02 is a partial backport, and contains a prerequisite (sock_efree()).
Instead of importing sock_efree() i could have used sock_edemux() since the two
behave similarly, except when the passed socket is a TCP socket in the
TCP_TIME_WAIT state. But since the TCP states are represented using an enum and
the field sk_state is reused by every protocol, i preferred to avoid introducing
a subtle mistake and use the original sock_efree() function.
Eric Dumazet (1):
net/llc: avoid BUG_ON() in skb_orphan()
Paolo Pisati (1):
UBUNTU: SAUCE: import sock_efree()
include/net/sock.h | 1 +
net/core/sock.c | 6 ++++++
net/llc/llc_conn.c | 3 +++
net/llc/llc_sap.c | 3 +++
4 files changed, 13 insertions(+)
--
2.7.4
More information about the kernel-team
mailing list