[v2.5] linux-grsec: CVE-2013-4348: kernel denial of service
The skb_flow_dissect function in net/core/flow_dissector.c in the Linux kernel through 3.12 allows remote attackers to cause a denial of service (infinite loop) via a small value in the IHL field of a packet with IPIP encapsulation.
•CONFIRM:https://bugzilla.redhat.com/show_bug.cgi?id=1007939
•CONFIRM:https://git.kernel.org/cgit/linux/kernel/git/davem/net.git/commit/?id=6f092343855a71e03b8d209815d8c45bf3a27fcd
(from redmine: issue id 2318, created on 2013-11-12, closed on 2013-11-15)
- Relations:
- parent #2302 (closed)
- Changesets:
- Revision e3c327d0 by Natanael Copa on 2013-11-13T11:57:00Z:
main/linux-grsec: security fixes (CVE-2013-2015,CVE-2013-4348,CVE-2013-4350,CVE-2013-4387,CVE-2013-4470)
fixes #2334
fixes #2328
fixes #2326
fixes #2318
fixes #2308