]> git.baikalelectronics.ru Git - kernel.git/commit
projects / kernel.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 9cd641f) | patch
netfilter: seqadj: re-load tcp header pointer after possible head reallocation
authorFlorian Westphal <fw@strlen.de>
Wed, 5 Dec 2018 13:12:19 +0000 (14:12 +0100)
committerPablo Neira Ayuso <pablo@netfilter.org>
Fri, 7 Dec 2018 09:54:23 +0000 (10:54 +0100)
commit96a5927d9e26e6d29fdbd75d1801077b8bd725e6
treeb5c4a153bc83e2743efd284e02b0e024aa5a51c7tree | snapshot
parent9cd641f445b8674a92b02609273fb854703a4caccommit | diff
netfilter: seqadj: re-load tcp header pointer after possible head reallocation

When adjusting sack block sequence numbers, skb_make_writable() gets
called to make sure tcp options are all in the linear area, and buffer
is not shared.

This can cause tcp header pointer to get reallocated, so we must
reaload it to avoid memory corruption.

This bug pre-dates git history.

Reported-by: Neel Mehta <nmehta@google.com>
Reported-by: Shane Huntley <shuntley@google.com>
Reported-by: Heather Adkins <argv@google.com>
Signed-off-by: Florian Westphal <fw@strlen.de>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
net/netfilter/nf_conntrack_seqadj.c diff | blob | history
Linux Kernel Source Tree.