[CVE-2011-3347] [Oneiric] [PATCH 0/3] be2net packet handling allows possible DOS
Andy Whitcroft
apw at canonical.com
Wed Feb 15 09:12:44 UTC 2012
On Tue, Feb 14, 2012 at 01:20:05PM -0800, Brad Figg wrote:
> CVE-2011-3347
> Non-member VLAN (virtual LAN) packet handling for interfaces in
> promiscuous mode and also using the be2net driver could allow an attacker
> on the local network to cause a denial of service.
>
> Following this cover-letter are three patches which address this issue. Two
> of the three are straight cherry-picks from Linus' tree. The third is a very
> minor backport due to the driver having been moved within the kernel tree.
>
> Proposing for Oneiric master.
>
> Ajit Khaparde (1):
> be2net: move to new vlan model
>
> Jiri Pirko (1):
> benet: remove bogus "unlikely" on vlan check
>
> Sathya Perla (1):
> be2net: non-member vlan pkts not received in promiscous mode
>
> drivers/net/benet/be.h | 1 -
> drivers/net/benet/be_cmds.c | 6 ++++--
> drivers/net/benet/be_main.c | 41 ++++++++++++++++-------------------------
> 3 files changed, 20 insertions(+), 28 deletions(-)
I see there are 4 commits listed in the tracker for this, I assume the
first is not actually necessary? Is that correct?
-apw
More information about the kernel-team
mailing list