Re: Linux 2.2.* remote exploit fix

Alexander L. Belikoff (abel@bfr.co.il)
02 Jun 1999 18:20:38 +0300


Alan Cox <alan@lxorguk.ukuu.org.uk> writes:

> This is a *provisional* fix. It seems to work, it seem to be the explanation
>
> Alan
>
>
> --- ../linux.vanilla/net/ipv4/ip_options.c Wed May 12 16:49:38 1999
> +++ net/ipv4/ip_options.c Tue Jun 1 22:11:46 1999
> @@ -452,7 +452,6 @@
> error:
> if (skb) {
> icmp_send(skb, ICMP_PARAMETERPROB, 0, htonl((pp_ptr-iph)<<24));
> - kfree_skb(skb);
> }
> return -EINVAL;
> }
>

Thanks, Alan. Any chance, this fix (as well as some of Alpha fixes
from ac1) will make into 2.2.10? I hope there won't be the same
mistake as with 2.0.30, which was lingering for a lot of time,
although the bugfixes were available...

-- 
Alexander L. Belikoff
Bloomberg L.P. / BFM Financial Research Ltd.
abel@vallinor4.com, abel@bfr.co.il

- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.rutgers.edu Please read the FAQ at http://www.tux.org/lkml/