| To: | vitalyvb@xxxxxxx (Vitaly V. Bursov) |
|---|---|
| Subject: | Re: linux-2.6.7 Equalizer Load-balancer. eql.c. local non-privileged DoS |
| From: | Herbert Xu <herbert@xxxxxxxxxxxxxxxxxxx> |
| Date: | Fri, 18 Jun 2004 21:35:42 +1000 |
| Cc: | linux-kernel@xxxxxxxxxxxxxxx, alan@xxxxxxxxxx, davem@xxxxxxxxxx, jgarzik@xxxxxxxxx, netdev@xxxxxxxxxxx |
| In-reply-to: | <20040618115153.3ad2dc32.vitalyvb@ukr.net> |
| Organization: | Core |
| Sender: | netdev-bounce@xxxxxxxxxxx |
| User-agent: | tin/1.7.4-20040225 ("Benbecula") (UNIX) (Linux/2.4.25-1-686-smp (i686)) |
Vitaly V. Bursov <vitalyvb@xxxxxxx> wrote: > > there are multiple vulns in drivers/net/eql.c > > if there is no such device, dev_get_by_name returns NULL and everything dies. > Exploiting this is trivial. Thanks for the report. This patch should fix them. Signed-off-by: Herbert Xu <herbert@xxxxxxxxxxxxxxxxxxx> Cheers, -- Visit Openswan at http://www.openswan.org/ Email: Herbert Xu ~{PmV>HI~} <herbert@xxxxxxxxxxxxxxxxxxx> Home Page: http://gondor.apana.org.au/~herbert/ PGP Key: http://gondor.apana.org.au/~herbert/pubkey.txt -- ===== drivers/net/eql.c 1.13 vs edited ===== --- 1.13/drivers/net/eql.c 2004-06-05 01:50:36 +10:00 +++ edited/drivers/net/eql.c 2004-06-18 21:30:49 +10:00 @@ -497,6 +497,8 @@ slave_dev = dev_get_by_name(sc.slave_name); ret = -EINVAL; + if (!slave_dev) + return ret; spin_lock_bh(&eql->queue.lock); if (eql_is_slave(slave_dev)) { @@ -531,6 +533,8 @@ slave_dev = dev_get_by_name(sc.slave_name); ret = -EINVAL; + if (!slave_dev) + return ret; spin_lock_bh(&eql->queue.lock); if (eql_is_slave(slave_dev)) { |
| <Prev in Thread] | Current Thread | [Next in Thread> |
|---|---|---|
| ||
| Previous by Date: | Re: 2.6.6 e1000 NETDEV WATCHDOG: eth0: transmit timed out+ delay scheduler, Jens Laas |
|---|---|
| Next by Date: | Re: 2.6.6 e1000 NETDEV WATCHDOG: eth0: transmit timed out+ delay scheduler, David Greaves |
| Previous by Thread: | [RFC PATCH] Change "local" route table preference from 0 to 3fff, to permit send-to-self policy routing, Mark Smith |
| Next by Thread: | Re: linux-2.6.7 Equalizer Load-balancer. eql.c. local non-privileged DoS, Jeff Garzik |
| Indexes: | [Date] [Thread] [Top] [All Lists] |