I believe this fix is needed on stable branches 3.2.y, 3.4.y and 3.5.7.z: commit 95a69adab9acfc3981c504737a2b6578e4d846ef Author: Tomas Hozza <[email protected]> Date: Thu Nov 8 10:53:29 2012 +0100
tools: hv: Netlink source address validation allows DoS
The source code without this patch caused hypervkvpd to exit when it
processed
a spoofed Netlink packet which has been sent from an untrusted local user.
Now Netlink messages with a non-zero nl_pid source address are ignored
and a warning is printed into the syslog.
Signed-off-by: Tomas Hozza <[email protected]>
Acked-by: K. Y. Srinivasan <[email protected]>
Signed-off-by: Greg Kroah-Hartman <[email protected]>
--
Ben Hutchings
It is easier to write an incorrect program than to understand a correct one.
signature.asc
Description: This is a digitally signed message part
