projects / platform / kernel / linux-amlogic.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: a384e54) | patch
dccp: CVE-2017-8824: use-after-free in DCCP code
authorMohamed Ghannam <simo.ghannam@gmail.com>
Tue, 5 Dec 2017 20:58:35 +0000 (20:58 +0000)
committerGreg Kroah-Hartman <gregkh@linuxfoundation.org>
Sat, 17 Feb 2018 12:21:13 +0000 (13:21 +0100)
commit7e2fb808d3c7c52f88ebc670949dbf1bae48f2a2
treefc3f1cf583fc3866c18dba04b226b7fab49d09c9tree | snapshot
parenta384e5437f705972d2884cea17b931c1a2cd3277commit | diff
dccp: CVE-2017-8824: use-after-free in DCCP code

commit 69c64866ce072dea1d1e59a0d61e0f66c0dffb76 upstream.

Whenever the sock object is in DCCP_CLOSED state,
dccp_disconnect() must free dccps_hc_tx_ccid and
dccps_hc_rx_ccid and set to NULL.

Signed-off-by: Mohamed Ghannam <simo.ghannam@gmail.com>
Reviewed-by: Eric Dumazet <edumazet@google.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
net/dccp/proto.c diff | blob | history
Domain: System / Kernel;