code.ossystems Code Review - meta-freescale.git/commit

]> code.ossystems Code Review - meta-freescale.git/commit

Code Review / meta-freescale.git / commit

author	Liviu Gheorghisan <liviu.gheorghisan@enea.com>
	Thu, 18 Sep 2014 08:22:37 +0000 (10:22 +0200)
committer	Zhenhua Luo <zhenhua.luo@freescale.com>
	Fri, 26 Sep 2014 07:17:46 +0000 (15:17 +0800)
commit	e58e8ae7b6735dd1f65b5bd6e59b3f5897dfd837
tree	16b8634b2150b01221f44a25b4e4893760478969	tree \| snapshot
parent	0593fcf83de728c86fd41c4695a3903dd7625daf	commit \| diff

CVE-2014-5077 Kernel/SCTP: fix a NULL pointer dereference

A NULL pointer dereference flaw was found in the way the
Linux kernel's Stream Control Transmission Protocol
(SCTP) implementation handled simultaneous connections
between the same hosts. A remote attacker could use this
flaw to crash the system.

References:
- https://access.redhat.com/security/cve/CVE-2014-5077
- http://patchwork.ozlabs.org/patch/372475/

Signed-off-by: Liviu Gheorghisan <liviu.gheorghisan@enea.com>

meta-fsl-ppc/recipes-kernel/linux/files/Fix-CVE-2014-5077-sctp-inherit-auth-capable-on-INIT-collisions.patch	[new file with mode: 0644]	blob
meta-fsl-ppc/recipes-kernel/linux/linux-qoriq_3.12.bb		diff \| blob \| history

RSS Atom