[Secure-testing-team] Bug#651255: ipv6: Fails to report all IPv6 addresses assigned to interface
Ben Hutchings
ben at decadent.org.uk
Wed Dec 7 06:25:29 UTC 2011
Source: linux-2.6
Version: 2.6.32-39
Severity: important
Tags: security ipv6
We need to apply this bug fix:
commit bcd323262a94b14b84341982b90443a76a477861
Author: Eric Dumazet <eric.dumazet at gmail.com>
Date: Mon Nov 9 07:40:17 2009 +0000
ipv6: Allow inet6_dump_addr() to handle more than 64 addresses
Apparently, inet6_dump_addr() is not able to handle more than
64 ipv6 addresses per device. We must break from inner loops
in case skb is full, or else cursor is put at the end of list.
Signed-off-by: Eric Dumazet <eric.dumazet at gmail.com>
Signed-off-by: David S. Miller <davem at davemloft.net>
Tagging this as 'security' because the system may accept connection
attempts to an address which doesn't appear to be assigned to it.
Ben.
-- System Information:
Debian Release: wheezy/sid
APT prefers unstable
APT policy: (500, 'unstable'), (500, 'stable'), (1, 'experimental')
Architecture: i386 (x86_64)
Kernel: Linux 3.1.0-1-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_GB.utf8, LC_CTYPE=en_GB.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
More information about the Secure-testing-team
mailing list