Piteball
/
android_kernel_samsung_msm8976
mirror of https://github.com/team-infusion-developers/android_kernel_samsung_msm8976.git
1
1
Fork 0
Code Issues Projects Releases Wiki Activity
android_kernel_samsung_msm8976/net
History
Eric Dumazet aae7bf925a dccp/tcp: do not inherit mc_list from parent 
syzkaller found a way to trigger double frees from ip_mc_drop_socket()

It turns out that leave a copy of parent mc_list at accept() time,
which is very bad.

Very similar to commit 8b485ce69876 ("tcp: do not inherit
fastopen_req from parent")

Initial report from Pray3r, completed by Andrey one.
Thanks a lot to them !

Change-Id: I9ab96385fcbcad25d3e6829927d586b91d22afe8
Signed-off-by: Eric Dumazet <edumazet@google.com>
Reported-by: Pray3r <pray3r.z@gmail.com>
Reported-by: Andrey Konovalov <andreyknvl@google.com>
Tested-by: Andrey Konovalov <andreyknvl@google.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
 		2017-05-20 14:06:16 +02:00
..
9p 9p: forgetting to cancel request on interrupted zero-copy RPC 2015-08-03 09:29:47 -07:00
802
8021q
appletalk
atm
ax25 Import latest Samsung release 2017-04-18 03:43:52 +02:00
batman-adv batman-adv: Fix broadcast/ogm queue limit on a removed interface 2016-06-07 10:42:53 +02:00
bluetooth This is the 3.10.94 stable release 2017-04-18 17:12:56 +02:00
bridge This is the 3.10.102 stable release 2017-04-18 17:22:08 +02:00
caif net/unix: sk_socket can disappear when state is unlocked 2015-09-16 18:20:18 +05:30
can can: add missing initialisations in CAN related skbuffs 2015-03-26 15:00:58 +01:00
ceph libceph: introduce ceph_crypt() for in-place en/decryption 2017-04-22 23:02:50 +02:00
core This is the 3.10.102 stable release 2017-04-18 17:22:08 +02:00
dcb
dccp Import latest Samsung release 2017-04-18 03:43:52 +02:00
decnet Import latest Samsung release 2017-04-18 03:43:52 +02:00
dns_resolver
dsa
ethernet
ieee802154
ipc_router net: ipc_router: Remove duplicate client port check 2017-04-22 23:02:47 +02:00
ipv4 dccp/tcp: do not inherit mc_list from parent 2017-05-20 14:06:16 +02:00
ipv6 ip6_gre: fix ip6gre_err() invalid reads 2017-04-22 23:02:58 +02:00
ipx
irda irda: Fix lockdep annotations in hashbin_delete(). 2017-04-22 23:02:49 +02:00
iucv
key
l2tp This is the 3.10.102 stable release 2017-04-18 17:22:08 +02:00
lapb
llc net/llc: avoid BUG_ON() in skb_orphan() 2017-04-22 23:03:00 +02:00
mac80211 This is the 3.10.101 stable release 2017-04-18 17:17:55 +02:00
mac802154
netfilter This is the 3.10.102 stable release 2017-04-18 17:22:08 +02:00
netlabel
netlink netlink: Fix dump skb leak/double free 2017-04-22 23:02:56 +02:00
netrom
nfc
openvswitch
packet net/packet: fix overflow in check for tp_frame_nr 2017-05-20 14:06:10 +02:00
phonet This is the 3.10.96 stable release 2017-04-18 17:16:02 +02:00
rds This is the 3.10.99 stable release 2017-04-18 17:17:46 +02:00
rfkill This is the 3.10.99 stable release 2017-04-18 17:17:46 +02:00
rmnet_data Merge tag 'LA.BR.1.3.6-03510-8976.0' into HEAD 2017-04-18 12:11:50 +02:00
rose
rxrpc Import latest Samsung release 2017-04-18 03:43:52 +02:00
sched This is the 3.10.84 stable release 2015-09-30 13:25:40 +05:30
sctp sctp: deny peeloff operation on asocs with threads sleeping on it 2017-04-22 23:02:59 +02:00
sunrpc This is the 3.10.99 stable release 2017-04-18 17:17:46 +02:00
tipc net/tipc: initialize security state for new connection socket 2015-10-01 12:07:35 +02:00
unix This is the 3.10.96 stable release 2017-04-18 17:16:02 +02:00
vmw_vsock VSOCK: do not disconnect socket when peer has shutdown SEND only 2016-06-07 10:42:54 +02:00
wimax
wireless This is the 3.10.102 stable release 2017-04-18 17:22:08 +02:00
x25 net: fix a kernel infoleak in x25 module 2016-06-07 10:42:54 +02:00
xfrm xfrm_user: validate XFRM_MSG_NEWAE incoming ESN size harder 2017-05-05 19:20:43 +00:00
Kconfig
Makefile
activity_stats.c
compat.c net: compat: Update get_compat_msghdr() to match copy_msghdr_from_user() behaviour 2015-03-26 15:00:56 +01:00
nonet.c
socket.c This is the 3.10.102 stable release 2017-04-18 17:22:08 +02:00
sysctl_net.c