Kernel/linux-stable
1
0
Fork 0
mirror of https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git synced 2025-01-10 15:10:38 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
linux-stable/net/sctp
History
Daniel Borkmann 24599e61b7 net: sctp: check proc_dointvec result in proc_sctp_do_auth 
When writing to the sysctl field net.sctp.auth_enable, it can well
be that the user buffer we handed over to proc_dointvec() via
proc_sctp_do_auth() handler contains something other than integers.

In that case, we would set an uninitialized 4-byte value from the
stack to net->sctp.auth_enable that can be leaked back when reading
the sysctl variable, and it can unintentionally turn auth_enable
on/off based on the stack content since auth_enable is interpreted
as a boolean.

Fix it up by making sure proc_dointvec() returned sucessfully.

Fixes: b14878ccb7fa ("net: sctp: cache auth_enable per endpoint")
Reported-by: Florian Westphal <fwestpha@redhat.com>
Signed-off-by: Daniel Borkmann <dborkman@redhat.com>
Acked-by: Neil Horman <nhorman@tuxdriver.com>
Acked-by: Vlad Yasevich <vyasevich@gmail.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
2014-06-19 21:30:19 -07:00
..
associola.c
sctp: Fix sk_ack_backlog wrap-around problem
2014-06-12 10:27:14 -07:00
auth.c
net: sctp: cache auth_enable per endpoint
2014-04-18 18:32:00 -04:00
bind_addr.c
sctp: Fix FSF address in file headers
2013-12-06 12:37:56 -05:00
chunk.c
sctp: fix checkpatch errors with space required or prohibited
2013-12-26 13:47:47 -05:00
command.c
sctp: Fix FSF address in file headers
2013-12-06 12:37:56 -05:00
debug.c
sctp: Fix FSF address in file headers
2013-12-06 12:37:56 -05:00
endpointola.c
net: sctp: migrate most recently used transport to ktime
2014-06-11 12:23:17 -07:00
input.c
sctp: remove macros sctp_bh_[un]lock_sock
2014-01-21 18:41:36 -08:00
inqueue.c
sctp: Fix FSF address in file headers
2013-12-06 12:37:56 -05:00
ipv6.c
net: Eliminate no_check from protosw
2014-05-23 16:28:53 -04:00
Kconfig
net: sctp: get rid of SCTP_DBG_TSNS entirely
2013-07-02 00:08:03 -07:00
Makefile
sctp: implement sctp association probing module
2010-04-30 22:41:09 -04:00
objcnt.c
sctp: fix checkpatch errors with (foo*)|foo * bar|foo* bar
2013-12-26 13:47:47 -05:00
output.c
net: rename local_df to ignore_df
2014-05-12 14:03:41 -04:00
outqueue.c
Merge branch 'master' of git://git.kernel.org/pub/scm/linux/kernel/git/davem/net
2014-01-06 17:37:45 -05:00
primitive.c
sctp: Fix FSF address in file headers
2013-12-06 12:37:56 -05:00
probe.c
sctp: loading sctp when load sctp_probe
2013-12-16 20:04:27 -05:00
proc.c
snmp: fix some left over of snmp stats
2014-05-14 15:33:47 -04:00
protocol.c
net: Eliminate no_check from protosw
2014-05-23 16:28:53 -04:00
sm_make_chunk.c
ktime: add ktime_after and ktime_before helper
2014-06-11 12:23:17 -07:00
sm_sideeffect.c
net: sctp: Don't transition to PF state when transport has exhausted 'Path.Max.Retrans'.
2014-04-27 23:41:14 -04:00
sm_statefuns.c
net: sctp: cache auth_enable per endpoint
2014-04-18 18:32:00 -04:00
sm_statetable.c
sctp: fix checkpatch errors with indent
2013-12-26 13:47:48 -05:00
socket.c
net: Split sk_no_check into sk_no_check_{rx,tx}
2014-05-23 16:28:53 -04:00
ssnmap.c
sctp: Fix FSF address in file headers
2013-12-06 12:37:56 -05:00
sysctl.c
net: sctp: check proc_dointvec result in proc_sctp_do_auth
2014-06-19 21:30:19 -07:00
transport.c
net: sctp: migrate most recently used transport to ktime
2014-06-11 12:23:17 -07:00
tsnmap.c
sctp: Fix FSF address in file headers
2013-12-06 12:37:56 -05:00
ulpevent.c
Revert "net: sctp: Fix a_rwnd/rwnd management to reflect real state of the receiver's buffer"
2014-04-14 16:26:48 -04:00
ulpqueue.c
sctp: add support for busy polling to sctp protocol
2014-04-20 18:18:55 -04:00