linux/net/sctp
Sridhar Samudrala c164a9ba0a Fix sctp privilege elevation (CVE-2006-3745)
sctp_make_abort_user() now takes the msg_len along with the msg
so that we don't have to recalculate the bytes in iovec.
It also uses memcpy_fromiovec() so that we don't go beyond the
length allocated.

It is good to have this fix even if verify_iovec() is fixed to
return error on overflow.

Signed-off-by: Sridhar Samudrala <sri@us.ibm.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>
2006-08-22 12:52:23 -07:00
..
associola.c [SCTP]: Verify all the paths to a peer via heartbeat before using them. 2006-07-21 14:48:50 -07:00
bind_addr.c [SCTP]: ADDIP: Don't use an address as source until it is ASCONF-ACKed 2006-07-21 14:49:25 -07:00
chunk.c [PATCH] gfp flags annotations - part 1 2005-10-08 15:00:57 -07:00
command.c Linux-2.6.12-rc2 2005-04-16 15:20:36 -07:00
crc32c.c Linux-2.6.12-rc2 2005-04-16 15:20:36 -07:00
debug.c Linux-2.6.12-rc2 2005-04-16 15:20:36 -07:00
endpointola.c [SCTP]: Unhash the endpoint in sctp_endpoint_free(). 2006-07-21 14:48:26 -07:00
input.c [SCTP]: Don't do CRC32C checksum over loopback. 2006-06-17 22:57:28 -07:00
inqueue.c [SCTP]: Allow spillover of receive buffer to avoid deadlock. 2006-05-05 17:02:09 -07:00
ipv6.c [SCTP]: ADDIP: Don't use an address as source until it is ASCONF-ACKed 2006-07-21 14:49:25 -07:00
Kconfig Linux-2.6.12-rc2 2005-04-16 15:20:36 -07:00
Makefile Linux-2.6.12-rc2 2005-04-16 15:20:36 -07:00
objcnt.c [SCTP]: Audit return code of create_proc_* 2005-07-18 13:38:07 -07:00
output.c [SCTP]: Don't do CRC32C checksum over loopback. 2006-06-17 22:57:28 -07:00
outqueue.c [SCTP]: Verify all the paths to a peer via heartbeat before using them. 2006-07-21 14:48:50 -07:00
primitive.c Linux-2.6.12-rc2 2005-04-16 15:20:36 -07:00
proc.c [PATCH] for_each_possible_cpu: network codes 2006-04-11 06:18:31 -07:00
protocol.c [SCTP]: ADDIP: Don't use an address as source until it is ASCONF-ACKed 2006-07-21 14:49:25 -07:00
sm_make_chunk.c Fix sctp privilege elevation (CVE-2006-3745) 2006-08-22 12:52:23 -07:00
sm_sideeffect.c [SCTP]: Verify all the paths to a peer via heartbeat before using them. 2006-07-21 14:48:50 -07:00
sm_statefuns.c Fix sctp privilege elevation (CVE-2006-3745) 2006-08-22 12:52:23 -07:00
sm_statetable.c [SCTP]: Fix state table entries for chunks received in CLOSED state. 2006-05-05 17:05:23 -07:00
socket.c Fix sctp privilege elevation (CVE-2006-3745) 2006-08-22 12:52:23 -07:00
ssnmap.c [PATCH] gfp flags annotations - part 1 2005-10-08 15:00:57 -07:00
sysctl.c [SCTP]: Fix bad sysctl formatting of SCTP timeout values on 64-bit m/cs. 2006-01-17 11:55:17 -08:00
transport.c [SCTP]: Verify all the paths to a peer via heartbeat before using them. 2006-07-21 14:48:50 -07:00
tsnmap.c Linux-2.6.12-rc2 2005-04-16 15:20:36 -07:00
ulpevent.c [SCTP]: Send only 1 window update SACK per message. 2006-06-17 22:58:28 -07:00
ulpqueue.c [SCTP]: Prevent possible infinite recursion with multiple bundled DATA. 2006-05-05 17:03:49 -07:00