From: Chris Wright Date: Sun, 15 Jan 2006 06:03:28 +0000 (-0800) Subject: Add CVE numbers to relevant netfilter fixes X-Git-Tag: v2.6.14.7~16 X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=b48320762ed35a9ba2e537b46d86d764efebf6e7;p=thirdparty%2Fkernel%2Fstable-queue.git Add CVE numbers to relevant netfilter fixes --- diff --git a/queue-2.6.14/netfilter-fix-another-crash-in-ip_nat_pptp.patch b/queue-2.6.14/netfilter-fix-another-crash-in-ip_nat_pptp.patch index 64422fd1b82..4487c6afdb3 100644 --- a/queue-2.6.14/netfilter-fix-another-crash-in-ip_nat_pptp.patch +++ b/queue-2.6.14/netfilter-fix-another-crash-in-ip_nat_pptp.patch @@ -4,7 +4,7 @@ Date: Tue, 10 Jan 2006 02:00:07 +0100 From: Patrick McHardy To: stable@kernel.org Cc: -Subject: [NETFILTER]: Fix another crash in ip_nat_pptp +Subject: [NETFILTER]: Fix another crash in ip_nat_pptp (CVE-2006-0037) The PPTP NAT helper calculates the offset at which the packet needs to be mangled as difference between two pointers to the header. With @@ -16,10 +16,8 @@ Signed-off-by: Patrick McHardy Signed-off-by: Chris Wright --- net/ipv4/netfilter/ip_nat_helper_pptp.c | 57 +++++++++++++++----------------- - 1 files changed, 27 insertions(+), 30 deletions(-) + 1 file changed, 27 insertions(+), 30 deletions(-) -Index: linux-2.6.14.6/net/ipv4/netfilter/ip_nat_helper_pptp.c -=================================================================== --- linux-2.6.14.6.orig/net/ipv4/netfilter/ip_nat_helper_pptp.c +++ linux-2.6.14.6/net/ipv4/netfilter/ip_nat_helper_pptp.c @@ -148,14 +148,14 @@ pptp_outbound_pkt(struct sk_buff **pskb, diff --git a/queue-2.6.14/netfilter-fix-crash-in-ip_nat_pptp.patch b/queue-2.6.14/netfilter-fix-crash-in-ip_nat_pptp.patch index 3aced5f5d12..3037e9484d2 100644 --- a/queue-2.6.14/netfilter-fix-crash-in-ip_nat_pptp.patch +++ b/queue-2.6.14/netfilter-fix-crash-in-ip_nat_pptp.patch @@ -4,7 +4,7 @@ Date: Tue, 10 Jan 2006 02:00:07 +0100 From: Patrick McHardy To: stable@kernel.org Cc: -Subject: [NETFILTER]: Fix crash in ip_nat_pptp +Subject: [NETFILTER]: Fix crash in ip_nat_pptp (CVE-2006-0036) When an inbound PPTP_IN_CALL_REQUEST packet is received the PPTP NAT helper uses a NULL pointer in pointer arithmentic to @@ -15,10 +15,8 @@ Signed-off-by: Patrick McHardy Signed-off-by: Chris Wright --- net/ipv4/netfilter/ip_nat_helper_pptp.c | 2 +- - 1 files changed, 1 insertion(+), 1 deletion(-) + 1 file changed, 1 insertion(+), 1 deletion(-) -Index: linux-2.6.14.6/net/ipv4/netfilter/ip_nat_helper_pptp.c -=================================================================== --- linux-2.6.14.6.orig/net/ipv4/netfilter/ip_nat_helper_pptp.c +++ linux-2.6.14.6/net/ipv4/netfilter/ip_nat_helper_pptp.c @@ -313,7 +313,7 @@ pptp_inbound_pkt(struct sk_buff **pskb, diff --git a/review-2.6.15/netfilter-fix-another-crash-in-ip_nat_pptp.patch b/review-2.6.15/netfilter-fix-another-crash-in-ip_nat_pptp.patch index 1420c531d27..3a07806ced8 100644 --- a/review-2.6.15/netfilter-fix-another-crash-in-ip_nat_pptp.patch +++ b/review-2.6.15/netfilter-fix-another-crash-in-ip_nat_pptp.patch @@ -4,7 +4,7 @@ Date: Tue, 10 Jan 2006 02:00:07 +0100 From: Patrick McHardy To: stable@kernel.org Cc: -Subject: [NETFILTER]: Fix another crash in ip_nat_pptp +Subject: [NETFILTER]: Fix another crash in ip_nat_pptp (CVE-2006-0037) The PPTP NAT helper calculates the offset at which the packet needs to be mangled as difference between two pointers to the header. With diff --git a/review-2.6.15/netfilter-fix-crash-in-ip_nat_pptp.patch b/review-2.6.15/netfilter-fix-crash-in-ip_nat_pptp.patch index 682e1d99b12..76767031d3e 100644 --- a/review-2.6.15/netfilter-fix-crash-in-ip_nat_pptp.patch +++ b/review-2.6.15/netfilter-fix-crash-in-ip_nat_pptp.patch @@ -4,7 +4,7 @@ Date: Tue, 10 Jan 2006 02:00:07 +0100 From: Patrick McHardy To: stable@kernel.org Cc: -Subject: [NETFILTER]: Fix crash in ip_nat_pptp +Subject: [NETFILTER]: Fix crash in ip_nat_pptp (CVE-2006-0036) When an inbound PPTP_IN_CALL_REQUEST packet is received the PPTP NAT helper uses a NULL pointer in pointer arithmentic to