Actually the CVE report is somewhat confused and actually the below
seems to be the correct upstream fix:

  commit fda9ef5d679b07c9d9097aaf6ef7f069d794a8f9
  Author: Dmitry Mishin <[email protected]>
  Date:   Thu Aug 31 15:28:39 2006 -0700

    [NET]: Fix sk->sk_filter field access
    
    Function sk_filter() is called from tcp_v{4,6}_rcv() functions with arg
    needlock = 0, while socket is not locked at that moment. In order to avoid
    this and similar issues in the future, use rcu for sk->sk_filter field read
    protection.
    
    Signed-off-by: Dmitry Mishin <[email protected]>
    Signed-off-by: Alexey Kuznetsov <[email protected]>
    Signed-off-by: Kirill Korotaev <[email protected]>

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/712354

Title:
  CVE-2010-4161

-- 
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

Reply via email to