linux/net at 5bddcdb07af2d976eb570ced2a4f0c69ea237cc2 - linux - sys114

shinys000114/linux

mirror of https://github.com/hardkernel/linux.git synced 2026-03-31 18:23:00 +09:00

Files

History

Tyler Hicks 5bddcdb07a libceph: Fix NULL pointer dereference in auth client code

commit 2cb33cac62 upstream.

A malicious monitor can craft an auth reply message that could cause a
NULL function pointer dereference in the client's kernel.

To prevent this, the auth_none protocol handler needs an empty
ceph_auth_client_ops->build_request() function.

CVE-2013-1059

Signed-off-by: Tyler Hicks <tyhicks@canonical.com>
Reported-by: Chanam Park <chanam.park@hkpco.kr>
Reviewed-by: Seth Arnold <seth.arnold@canonical.com>
Reviewed-by: Sage Weil <sage@inktank.com>
Signed-off-by: Kamal Mostafa <kamal@canonical.com>

2013-07-18 11:07:38 -07:00

..

virtio: 9p: correctly pass physical address to userspace for high pages

2012-10-22 18:19:36 +10:30

tokenring: delete all remaining driver support

2012-05-15 20:23:16 -04:00

net: vlan,ethtool: netdev_features_t is more than 32 bit

2013-05-24 10:23:14 -07:00

userns: Print out socket uids in a user namespace aware fashion.

2012-08-14 21:48:06 -07:00

atm: update msg_namelen in vcc_recvmsg()

2013-05-01 09:46:00 -07:00

ax25: fix info leak via msg_name in ax25_recvmsg()

2013-05-01 09:46:00 -07:00

batman-adv: verify tt len does not exceed packet len

2013-03-28 12:17:07 -07:00

Bluetooth: Fix invalid length check in l2cap_information_rsp()

2013-06-29 07:13:28 -07:00

bridge: fix race with topology change timer

2013-05-24 10:23:15 -07:00

caif: Fix missing msg_namelen update in caif_seqpkt_recvmsg()

2013-05-01 09:46:01 -07:00

can: gw: use kmem_cache_free() instead of kfree()

2013-04-12 09:52:12 -07:00

libceph: Fix NULL pointer dereference in auth client code

2013-07-18 11:07:38 -07:00

net/core/sock.c: add missing VSOCK string in af_family_*_key_strings

2013-06-25 15:08:36 -07:00

dcbnl: fix various netlink info leaks

2013-03-20 13:10:59 -07:00

inet: Fix kmemleak in tcp_v4/6_syn_recv_sock and dccp_v4/6_request_recv_sock

2012-12-14 13:14:07 -05:00

net: Push capable(CAP_NET_ADMIN) into the rtnl methods

2012-11-18 20:32:44 -05:00

Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security

2012-12-16 15:40:50 -08:00

dsa: Hide core config options; make drivers select what they need

2012-11-26 17:10:44 -05:00

ipx: move peII functions

2012-07-19 10:48:00 -07:00

6lowpan: Fix endianness issue in is_addr_link_local().

2013-03-20 13:10:59 -07:00

netfilter: ipt_ULOG: fix non-null terminated string in the nf_log path

2013-07-16 10:35:47 -07:00

netfilter: add nf_ipv6_ops hook to fix xt_addrtype with IPv6

2013-07-16 10:35:48 -07:00

userns: Print out socket uids in a user namespace aware fashion.

2012-08-14 21:48:06 -07:00

irda: Fix missing msg_namelen update in irda_recvmsg_dgram()

2013-05-01 09:46:01 -07:00

iucv: Fix missing msg_namelen update in iucv_sock_recvmsg()

2013-05-01 09:46:02 -07:00

net: Allow userns root to control llc, netfilter, netlink, packet, and xfrm

2012-11-18 20:32:45 -05:00

l2tp: Fix sendmsg() return value

2013-06-25 15:08:44 -07:00

lapb: Neaten debugging

2012-05-17 18:45:20 -04:00

llc: Fix missing msg_namelen update in llc_ui_recvmsg()

2013-05-01 09:46:02 -07:00

mac80211: close AP_VLAN interfaces before unregistering all

2013-06-07 09:46:46 -07:00

net: mac802154: comparision issue of type cast, finding by EXTRA_CFLAGS=-W

2013-05-24 10:23:11 -07:00

ipvs: SCTP ports should be writable in ICMP packets

2013-07-16 10:35:55 -07:00

netlabel: improve domain mapping validation

2013-06-25 15:08:29 -07:00

thermal: shorten too long mcast group name

2013-04-05 09:26:17 -07:00

netrom: fix invalid use of sizeof in nr_recvmsg()

2013-06-20 08:55:32 -07:00

NFC: llcp: fix info leaks via msg_name in llcp_sock_recvmsg()

2013-05-01 09:46:15 -07:00

openvswitch: Move LRO check from transmit to receive.

2013-01-21 23:57:26 -08:00

packet: packet_getname_spkt: make sure string is always 0-terminated

2013-06-25 15:08:43 -07:00

net: Push capable(CAP_NET_ADMIN) into the rtnl methods

2012-11-18 20:32:44 -05:00

rds: limit the size allocated by rds_message_alloc()

2013-03-20 13:10:57 -07:00

Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jikos/trivial

2012-12-13 12:00:02 -08:00

rose: fix info leak via msg_name in rose_recvmsg()

2013-05-01 09:46:15 -07:00

Merge branch 'modules-next' of git://git.kernel.org/pub/scm/linux/kernel/git/rusty/linux

2012-10-14 13:39:34 -07:00

net_sched: act_ipt forward compat with xtables

2013-05-24 10:23:13 -07:00

sctp: fully initialize sctp_outq in sctp_outq_init

2013-06-25 15:08:45 -07:00

svcrpc: don't error out on small tcp fragment

2013-07-18 11:07:33 -07:00

tipc: fix info leaks via msg_name in recv_msg/recv_stream

2013-05-01 09:46:15 -07:00

af_unix: If we don't care about credentials coallesce all messages

2013-05-01 09:46:17 -07:00

wanmain: comparing array with NULL

2012-07-24 13:55:21 -07:00

net: cleanup unsigned to unsigned int

2012-04-15 12:44:40 -04:00

cfg80211: check wdev->netdev in connection work

2013-06-07 09:46:46 -07:00

net: Fix (nearly-)kernel-doc comments for various functions

2012-07-10 23:13:45 -07:00

xfrm: fix freed block size calculation in xfrm_policy_fini()

2013-01-21 06:50:04 +01:00

compat.c

net: Block MSG_CMSG_COMPAT in send(m)msg and recv(m)msg

2013-06-25 15:08:35 -07:00

Kconfig

net: Add INET dependency on aes crypto for the sake of TCP fastopen.

2012-09-04 14:20:14 -04:00

Makefile

ipv6: Preserve ipv6 functionality needed by NET

2012-11-18 02:34:00 -05:00

nonet.c

llseek: automatically add .llseek fop

2010-10-15 15:53:27 +02:00

socket.c

net: Block MSG_CMSG_COMPAT in send(m)msg and recv(m)msg

2013-06-25 15:08:35 -07:00

sysctl_net.c

user_ns: get rid of duplicate code in net_ctl_permissions

2012-11-18 20:32:45 -05:00