[v2.7] linux-grsec: CVE-2013-4348: kernel denial of service
The skb_flow_dissect function in net/core/flow_dissector.c in the Linux kernel through 3.12 allows remote attackers to cause a denial of service (infinite loop) via a small value in the IHL field of a packet with IPIP encapsulation.
•CONFIRM:https://bugzilla.redhat.com/show_bug.cgi?id=1007939
•CONFIRM:https://git.kernel.org/cgit/linux/kernel/git/davem/net.git/commit/?id=6f092343855a71e03b8d209815d8c45bf3a27fcd
(from redmine: issue id 2313, created on 2013-11-12, closed on 2013-11-15)
- Relations:
- parent #2302 (closed)
- Changesets:
- Revision 4fb83db8 by Natanael Copa on 2013-11-13T16:16:56Z:
main/linux-grsec: fix CVE-2013-4348
ref #2302
fixes #2313