]> code.ossystems Code Review - meta-freescale.git/commit
Code Review / meta-freescale.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: 8cde622) | patch
net-sctp: CVE-2014-3673, CVE-2014-3687, CVE-2014-3688
authorSona Sarmadi <sona.sarmadi@enea.com>
Tue, 27 Jan 2015 13:04:07 +0000 (14:04 +0100)
committerZhenhua Luo <zhenhua.luo@freescale.com>
Tue, 3 Feb 2015 02:06:33 +0000 (10:06 +0800)
commit26303c11e8502a997caee96a4b342fdf084bd4ab
treeb8b0f809d11bcfedad18f4cfea8238d7e3599cf2tree | snapshot
parent8cde62241772c928769ae77344325e741c414e0fcommit | diff
net-sctp: CVE-2014-3673, CVE-2014-3687, CVE-2014-3688

CVE-2014-3673
skb_over_panic when receiving malformed ASCONF chunks
Fixes: b896b82be4ae ("[SCTP] ADDIP: Support for processing incoming ASCONF_ACK
chunks.")

CVE-2014-3687
panic on duplicate ASCONF chunks
Fixes: 2e3216cd54b1 ("sctp: Follow security requirement of responding with 1
packet")

CVE-2014-3688
remote memory pressure from excessive queueing
Fixes: 2e3216cd54b1 ("sctp: Follow security requirement of responding with 1
packet")

References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3673
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3687
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3688
http://www.openwall.com/lists/oss-security/2014/11/13/8

Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com>
meta-fsl-ppc/recipes-kernel/linux/files/0001-net-sctp-CVE-2014-3673.patch [new file with mode: 0644] blob
meta-fsl-ppc/recipes-kernel/linux/files/0002-net-sctp-CVE-2014-3687.patch [new file with mode: 0644] blob
meta-fsl-ppc/recipes-kernel/linux/files/0003-net-sctp-CVE-2014-3688.patch [new file with mode: 0644] blob
meta-fsl-ppc/recipes-kernel/linux/linux-qoriq_3.12.bb diff | blob | history