OpenSDV
/
linux-stable-rt
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
linux-stable-rt/net/ipv6/netfilter
History
Patrick McHardy f9f02cca25 [NETFILTER]: nf_conntrack_ipv6: fix crash when handling fragments 
When IPv6 connection tracking splits up a defragmented packet into
its original fragments, the packets are taken from a list and are
passed to the network stack with skb->next still set. This causes
dev_hard_start_xmit to treat them as GSO fragments, resulting in
a use after free when connection tracking handles the next fragment.

Signed-off-by: Patrick McHardy <kaber@trash.net>
Signed-off-by: David S. Miller <davem@davemloft.net>
 		2007-01-09 14:32:41 -08:00
..
Kconfig [NETFILTER] IPV6: Fix dependencies. 2006-12-17 21:59:18 -08:00
Makefile
ip6_queue.c [NETFILTER]: Fix PROC_FS=n warnings 2006-12-02 21:31:34 -08:00
ip6_tables.c [NETFILTER]: {ip,ip6,arp}_tables: fix exponential worst-case search for loops 2006-12-13 16:48:23 -08:00
ip6t_HL.c
ip6t_LOG.c [NETFILTER]: x_tables: add NFLOG target 2006-12-02 21:31:31 -08:00
ip6t_REJECT.c
ip6t_ah.c
ip6t_eui64.c
ip6t_frag.c
ip6t_hbh.c
ip6t_hl.c
ip6t_ipv6header.c
ip6t_owner.c
ip6t_rt.c
ip6table_filter.c
ip6table_mangle.c [NET]: Turn nfmark into generic mark 2006-12-02 21:21:38 -08:00
ip6table_raw.c
nf_conntrack_l3proto_ipv6.c [NETFILTER]: nf_conntrack: move conntrack protocol sysctls to individual modules 2006-12-02 21:31:18 -08:00
nf_conntrack_proto_icmpv6.c [NETFILTER]: nf_conntrack: endian annotations 2006-12-02 22:05:08 -08:00
nf_conntrack_reasm.c [NETFILTER]: nf_conntrack_ipv6: fix crash when handling fragments 2007-01-09 14:32:41 -08:00