Revision a9915a1b52df52ad87f3b33422da95cf25372f09 authored by Eric Dumazet on 20 August 2012, 07:26:45 UTC, committed by David S. Miller on 21 August 2012, 21:51:06 UTC
Christian Casteyde reported a kmemcheck 32-bit read from uninitialized memory in __ip_select_ident(). It turns out that __ip_make_skb() called ip_select_ident() before properly initializing iph->daddr. This is a bug uncovered by commit 1d861aa4b3fb (inet: Minimize use of cached route inetpeer.) Addresses https://bugzilla.kernel.org/show_bug.cgi?id=46131 Reported-by: Christian Casteyde <casteyde.christian@free.fr> Signed-off-by: Eric Dumazet <edumazet@google.com> Cc: Stephen Hemminger <shemminger@vyatta.com> Signed-off-by: David S. Miller <davem@davemloft.net>
1 parent 1a7b27c
| File | Mode | Size |
|---|---|---|
| Makefile | -rw-r--r-- | 394 bytes |
| compat.c | -rw-r--r-- | 18.4 KB |
| compat_mq.c | -rw-r--r-- | 4.1 KB |
| ipc_sysctl.c | -rw-r--r-- | 6.0 KB |
| ipcns_notifier.c | -rw-r--r-- | 2.2 KB |
| mq_sysctl.c | -rw-r--r-- | 2.7 KB |
| mqueue.c | -rw-r--r-- | 35.3 KB |
| msg.c | -rw-r--r-- | 20.9 KB |
| msgutil.c | -rw-r--r-- | 2.7 KB |
| namespace.c | -rw-r--r-- | 4.3 KB |
| sem.c | -rw-r--r-- | 42.1 KB |
| shm.c | -rw-r--r-- | 29.7 KB |
| syscall.c | -rw-r--r-- | 2.3 KB |
| util.c | -rw-r--r-- | 22.8 KB |
| util.h | -rw-r--r-- | 5.3 KB |
Computing file changes ...
