diff options
author | Dan Carpenter <dan.carpenter@oracle.com> | 2012-08-16 05:14:04 +0200 |
---|---|---|
committer | David S. Miller <davem@davemloft.net> | 2012-08-20 11:21:30 +0200 |
commit | 5ef5d6c569f80cf716d75fa88e9b5ee72f0986b2 (patch) | |
tree | d8d85f656645a41afa15ff5ac11cf4e5eddf841f /net/packet | |
parent | xfrm: Use rcu_dereference_bh to deference pointer protected by rcu_read_lock_bh (diff) | |
download | linux-5ef5d6c569f80cf716d75fa88e9b5ee72f0986b2.tar.xz linux-5ef5d6c569f80cf716d75fa88e9b5ee72f0986b2.zip |
gre: information leak in ip6_tnl_ioctl()
There is a one byte hole between p->hop_limit and p->flowinfo where
stack memory is leaked to the user. This was introduced in c12b395a46
"gre: Support GRE over IPv6".
Signed-off-by: Dan Carpenter <dan.carpenter@oracle.com>
Diffstat (limited to 'net/packet')
0 files changed, 0 insertions, 0 deletions