[Lucid][CVE-2013-2206] sctp: Use correct sideffect command in duplicate cookie handling
Luis Henriques
luis.henriques at canonical.com
Thu Aug 1 13:32:29 UTC 2013
The fix for CVE-2013-2206 has already been included in all the Ubuntu
kernels, except for Lucid. The reason is that the fix makes usage of
a feature that is not available in this kernel.
The first patch backports this feature into Lucid, while the second
one just cherry-picks the actual fix the CVE.
Max Matveev (1):
sctp: deal with multiple COOKIE_ECHO chunks
Vlad Yasevich (1):
sctp: Use correct sideffect command in duplicate cookie handling
include/net/sctp/command.h | 1 +
net/sctp/sm_sideeffect.c | 3 +++
net/sctp/sm_statefuns.c | 8 +++++++-
3 files changed, 11 insertions(+), 1 deletion(-)
--
1.8.3.2
More information about the kernel-team
mailing list