linux

iv/linux

History

Nicolas Dichtel 1e9f3d6f1c ip6tnl: fix use after free of fb_tnl_dev Bug has been introduced by commit `bb8140947a` ("ip6tnl: allow to use rtnl ops on fb tunnel"). When ip6_tunnel.ko is unloaded, FB device is delete by rtnl_link_unregister() and then we try to use the pointer in ip6_tnl_destroy_tunnels(). Let's add an handler for dellink, which will never remove the FB tunnel. With this patch it will no more be possible to remove it via 'ip link del ip6tnl0', but it's safer. The same fix was already proposed by Willem de Bruijn <willemb@google.com> for sit interfaces. CC: Willem de Bruijn <willemb@google.com> Reported-by: Steven Rostedt <rostedt@goodmis.org> Signed-off-by: Nicolas Dichtel <nicolas.dichtel@6wind.com> Acked-by: Willem de Bruijn <willemb@google.com> Signed-off-by: David S. Miller <davem@davemloft.net>		2013-11-14 17:04:38 -05:00
..
9p	file->f_op is never NULL...	2013-10-24 23:34:54 -04:00
802
8021q	vlan: Implement vlan_dev_get_egress_qos_mask as an inline.	2013-11-11 00:42:07 -05:00
appletalk
atm
ax25	ax25: cleanup a range test	2013-10-18 13:56:07 -04:00
batman-adv	batman-adv: generalize batman-adv icmp packet handling	2013-10-23 17:03:47 +02:00
bluetooth	Merge branch 'master' of git://git.kernel.org/pub/scm/linux/kernel/git/linville/wireless-next into for-davem	2013-11-08 09:03:10 -05:00
bridge	bridge: Fix memory leak when deleting bridge with vlan filtering enabled	2013-11-14 16:16:34 -05:00
caif	caif: use pskb_put() instead of reimplementing its functionality	2013-11-07 19:28:59 -05:00
can	net: 8021q/bluetooth/bridge/can/ceph: Remove extern from function prototypes	2013-10-19 19:12:11 -04:00
ceph	net: 8021q/bluetooth/bridge/can/ceph: Remove extern from function prototypes	2013-10-19 19:12:11 -04:00
core	core/dev: do not ignore dmac in dev_forward_skb()	2013-11-14 02:39:53 -05:00
dcb
dccp	ipv4: introduce new IP_MTU_DISCOVER mode IP_PMTUDISC_INTERFACE	2013-11-05 21:52:27 -05:00
decnet	netfilter: pass hook ops to hookfn	2013-10-14 11:29:31 +02:00
dns_resolver
dsa
ethernet	ethernet: use likely() for common Ethernet encap	2013-09-30 21:52:53 -07:00
hsr	net/hsr: Add support for the High-availability Seamless Redundancy protocol (HSRv0)	2013-11-03 23:20:14 -05:00
ieee802154	6lowpan: release device on error path	2013-11-07 19:11:13 -05:00
ipv4	net-tcp: fix panic in tcp_fastopen_cache_set()	2013-11-14 16:33:18 -05:00
ipv6	ip6tnl: fix use after free of fb_tnl_dev	2013-11-14 17:04:38 -05:00
ipx
irda	Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-next	2013-11-13 17:40:34 +09:00
iucv
key
l2tp	Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net	2013-10-23 16:49:34 -04:00
lapb
llc
mac80211	Merge branch 'master' of git://git.kernel.org/pub/scm/linux/kernel/git/linville/wireless-next into for-davem	2013-11-08 09:03:10 -05:00
mac802154	6lowpan: set and use mac_len for mac header length	2013-10-30 17:18:46 -04:00
mpls	ipip: add GSO/TSO support	2013-10-19 19:36:19 -04:00
netfilter	Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-next	2013-11-13 17:40:34 +09:00
netlabel	inet: includes a sock_common in request_sock	2013-10-10 00:08:07 -04:00
netlink
netrom
nfc	NFC: Fix SE API related sparse warning	2013-10-07 14:18:44 +02:00
openvswitch	Merge branch 'master' of git://git.kernel.org/pub/scm/linux/kernel/git/jesse/openvswitch	2013-11-04 16:25:04 -05:00
packet
phonet
rds	inet: convert inet_ehash_secret and ipv6_hash_secret to net_get_random_once	2013-10-19 19:45:35 -04:00
rfkill	net: rfkill: gpio: add ACPI support	2013-10-28 15:05:25 +01:00
rose
rxrpc	net: misc: Remove extern from function prototypes	2013-10-19 19:12:11 -04:00
sched	net_sched: tbf: support of 64bit rates	2013-11-09 14:53:37 -05:00
sctp	net: sctp: bug-fixing: retran_path not set properly after transports recovering (v3)	2013-11-14 16:35:09 -05:00
sunrpc	Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-next	2013-11-13 17:40:34 +09:00
tipc	tipc: reassembly failures should cause link reset	2013-11-07 18:30:11 -05:00
unix	net: unix: inherit SOCK_PASS{CRED, SEC} flags from socket to fix race	2013-10-19 18:50:15 -04:00
vmw_vsock
wimax	net: misc: Remove extern from function prototypes	2013-10-19 19:12:11 -04:00
wireless	Merge branch 'master' of git://git.kernel.org/pub/scm/linux/kernel/git/linville/wireless-next into for-davem	2013-11-08 09:03:10 -05:00
x25	net: x25: Fix dead URLs in Kconfig	2013-10-29 17:35:17 -04:00
xfrm	net: move pskb_put() to core code	2013-11-07 19:28:58 -05:00
compat.c	net: heap overflow in __audit_sockaddr()	2013-10-03 16:05:14 -04:00
Kconfig	net/hsr: Add support for the High-availability Seamless Redundancy protocol (HSRv0)	2013-11-03 23:20:14 -05:00
Makefile	net/hsr: Add support for the High-availability Seamless Redundancy protocol (HSRv0)	2013-11-03 23:20:14 -05:00
nonet.c
socket.c	net: heap overflow in __audit_sockaddr()	2013-10-03 16:05:14 -04:00
sysctl_net.c	net: Update the sysctl permissions handler to test effective uid/gid	2013-10-07 15:57:56 -04:00