iv/linux
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
linux/net
History
Jozsef Kadlecsik 64f509ce71 netfilter: Mark SYN/ACK packets as invalid from original direction 
Clients should not send such packets. By accepting them, we open
up a hole by wich ephemeral ports can be discovered in an off-path
attack.

See: "Reflection scan: an Off-Path Attack on TCP" by Jan Wrobel,
http://arxiv.org/abs/1201.2074

Signed-off-by: Jozsef Kadlecsik <kadlec@blackhole.kfki.hu>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
2012-09-09 22:13:30 +02:00
..
9p
net: Fix (nearly-)kernel-doc comments for various functions
2012-07-10 23:13:45 -07:00
802
8021q
vlan: clean up vlan_dev_hard_start_xmit()
2012-08-14 14:33:32 -07:00
appletalk
net: Fix (nearly-)kernel-doc comments for various functions
2012-07-10 23:13:45 -07:00
atm
atm: fix info leak via getsockname()
2012-08-15 21:36:30 -07:00
ax25
Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net
2012-07-19 11:17:30 -07:00
batman-adv
batman-adv: Fix mem leak in the batadv_tt_local_event() function
2012-08-08 16:04:04 -07:00
bluetooth
Bluetooth: L2CAP - Fix info leak via getsockname()
2012-08-15 21:36:31 -07:00
bridge
bridge: fix rcu dereference outside of rcu_read_lock
2012-08-15 15:09:41 -07:00
caif
caif: Do not dereference NULL in chnl_recv_cb()
2012-08-20 02:47:49 -07:00
can
can: gw: Remove pointless casts
2012-07-10 22:36:17 +02:00
ceph
libceph: avoid truncation due to racing banners
2012-08-21 15:55:27 -07:00
core
netpoll: revert 6bdb7fe3104 and fix be_poll() instead
2012-08-29 15:03:23 -04:00
dcb
net: Fix non-kernel-doc comments with kernel-doc start marker
2012-07-10 23:13:45 -07:00
dccp
dccp: fix info leak via getsockopt(DCCP_SOCKOPT_CCID_TX_INFO)
2012-08-15 21:36:31 -07:00
decnet
ipv4: Restore old dst_free() behavior.
2012-07-31 14:41:38 -07:00
dns_resolver
dsa
ethernet
ipx: move peII functions
2012-07-19 10:48:00 -07:00
ieee802154
6lowpan: Change byte order when storing/accessing to len field
2012-07-16 22:52:02 -07:00
ipv4
Merge branch 'master' of git://1984.lsi.us.es/nf
2012-08-31 13:06:37 -04:00
ipv6
net: ipv6: fix error return code
2012-08-31 16:27:48 -04:00
ipx
ipx: move peII functions
2012-07-19 10:48:00 -07:00
irda
irda: Fix typo in irda
2012-07-16 23:23:52 -07:00
iucv
net: remove skb_orphan_try()
2012-06-15 15:30:15 -07:00
key
l2tp
l2tp: avoid to use synchronize_rcu in tunnel free function
2012-08-30 12:31:03 -04:00
lapb
llc
llc: fix info leak via getsockname()
2012-08-15 21:36:31 -07:00
mac80211
Merge branch 'for-john' of git://git.kernel.org/pub/scm/linux/kernel/git/jberg/mac80211
2012-08-23 09:51:15 -04:00
mac802154
mac802154: sparse warnings: make symbols static
2012-07-12 07:54:45 -07:00
netfilter
netfilter: Mark SYN/ACK packets as invalid from original direction
2012-09-09 22:13:30 +02:00
netlabel
netlink
netlink: fix possible spoofing from non-root processes
2012-08-24 13:36:09 -04:00
netrom
nfc
Merge branch 'master' of git://git.kernel.org/pub/scm/linux/kernel/git/linville/wireless-next into for-davem
2012-07-20 12:30:48 -04:00
openvswitch
Revert "openvswitch: potential NULL deref in sample()"
2012-07-27 13:45:51 -07:00
packet
af_packet: match_fanout_group() can be static
2012-08-23 09:27:12 -07:00
phonet
net: remove my future former mail address
2012-06-17 16:29:38 -07:00
rds
rds: set correct msg_namelen
2012-07-23 01:01:44 -07:00
rfkill
rfkill: Add the capability to switch all devices of all type in __rfkill_switch_all().
2012-06-06 15:18:17 -04:00
rose
rxrpc
Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net
2012-07-10 23:56:33 -07:00
sched
act_mirred: do not drop packets when fails to mirror it
2012-08-16 14:54:44 -07:00
sctp
netvm: prevent a stream-specific deadlock
2012-07-31 18:42:47 -07:00
sunrpc
svcrpc: fix svc_xprt_enqueue/svc_recv busy-looping
2012-08-20 18:39:19 -04:00
tipc
tipc: remove print_buf and deprecated log buffer code
2012-07-13 19:34:43 -04:00
unix
af_netlink: force credentials passing [CVE-2012-3520]
2012-08-21 14:53:01 -07:00
wanrouter
wanmain: comparing array with NULL
2012-07-24 13:55:21 -07:00
wimax
wireless
cfg80211: process pending events when unregistering net device
2012-08-06 14:29:58 -04:00
x25
net: Fix (nearly-)kernel-doc comments for various functions
2012-07-10 23:13:45 -07:00
xfrm
net/xfrm/xfrm_state.c: fix error return code
2012-08-31 16:27:48 -04:00
compat.c
net: Fix references to out-of-scope variables in put_cmsg_compat()
2012-07-22 17:50:49 -07:00
Kconfig
Makefile
nonet.c
socket.c
net: fix info leak in compat dev_ifconf()
2012-08-15 21:36:31 -07:00
sysctl_net.c