linux/net/ipv6/netfilter
Patrick McHardy f9f02cca25 [NETFILTER]: nf_conntrack_ipv6: fix crash when handling fragments
When IPv6 connection tracking splits up a defragmented packet into
its original fragments, the packets are taken from a list and are
passed to the network stack with skb->next still set. This causes
dev_hard_start_xmit to treat them as GSO fragments, resulting in
a use after free when connection tracking handles the next fragment.

Signed-off-by: Patrick McHardy <kaber@trash.net>
Signed-off-by: David S. Miller <davem@davemloft.net>
2007-01-09 14:32:41 -08:00
..
ip6_queue.c [NETFILTER]: Fix PROC_FS=n warnings 2006-12-02 21:31:34 -08:00
ip6_tables.c [NETFILTER]: {ip,ip6,arp}_tables: fix exponential worst-case search for loops 2006-12-13 16:48:23 -08:00
ip6t_ah.c [NETFILTER]: Fix ip6_tables extension header bypass bug 2006-10-24 16:15:10 -07:00
ip6t_eui64.c [IPV6]: Endian fix in net/ipv6/netfilter/ip6t_eui64.c:match(). 2006-05-16 15:24:41 -07:00
ip6t_frag.c [NETFILTER]: Fix ip6_tables extension header bypass bug 2006-10-24 16:15:10 -07:00
ip6t_hbh.c [NETFILTER]: Fix ip6_tables extension header bypass bug 2006-10-24 16:15:10 -07:00
ip6t_hl.c [NETFILTER]: Rename init functions. 2006-03-28 17:02:48 -08:00
ip6t_HL.c [NETFILTER]: ip6t_HL: remove write-only variable 2006-09-22 15:19:55 -07:00
ip6t_ipv6header.c [NETFILTER]: x_tables: remove unused size argument to check/destroy functions 2006-09-22 14:55:34 -07:00
ip6t_LOG.c [NETFILTER]: x_tables: add NFLOG target 2006-12-02 21:31:31 -08:00
ip6t_owner.c [NETFILTER]: x_tables: remove unused size argument to check/destroy functions 2006-09-22 14:55:34 -07:00
ip6t_REJECT.c [NETFILTER]: x_tables: remove unused size argument to check/destroy functions 2006-09-22 14:55:34 -07:00
ip6t_rt.c [NETFILTER]: Fix ip6_tables extension header bypass bug 2006-10-24 16:15:10 -07:00
ip6table_filter.c [NETFILTER]: x_tables: remove unused argument to target functions 2006-09-22 14:55:33 -07:00
ip6table_mangle.c [NET]: Turn nfmark into generic mark 2006-12-02 21:21:38 -08:00
ip6table_raw.c [NETFILTER]: x_tables: remove unused argument to target functions 2006-09-22 14:55:33 -07:00
Kconfig [NETFILTER] IPV6: Fix dependencies. 2006-12-17 21:59:18 -08:00
Makefile [NETFILTER]: ip6_tables: consolidate dst and hbh matches 2006-09-22 14:55:37 -07:00
nf_conntrack_l3proto_ipv6.c [NETFILTER]: nf_conntrack: move conntrack protocol sysctls to individual modules 2006-12-02 21:31:18 -08:00
nf_conntrack_proto_icmpv6.c [NETFILTER]: nf_conntrack: endian annotations 2006-12-02 22:05:08 -08:00
nf_conntrack_reasm.c [NETFILTER]: nf_conntrack_ipv6: fix crash when handling fragments 2007-01-09 14:32:41 -08:00