[v1] Fix for CVE-2024-36901

[PATCH v5.15 0/2] Fix for CVE-2024-36901

Ashwin Kamat posted 2 patches 1 year, 7 months ago

Diff against v1
Download series mbox

There is a newer version of this series

net/ipv6/addrconf.c   | 9 +++++----
net/ipv6/ip6_input.c  | 2 +-
net/ipv6/ip6_output.c | 2 +-
3 files changed, 7 insertions(+), 6 deletions(-)

Expand all Fold all

[PATCH v5.15 0/2] Fix for CVE-2024-36901

Posted by Ashwin Kamat 1 year, 7 months ago

From: Ashwin Dayanand Kamat <ashwin.kamat@broadcom.com>

net/ipv6: annotate data-races around cnf.disable_ipv6 
       disable_ipv6 is read locklessly, add appropriate READ_ONCE() and WRITE_ONCE() annotations.

net/ipv6: prevent NULL dereference in ip6_output()
       Fix for CVE-2024-36901

Ashwin Dayanand Kamat (2):
       net/ipv6: annotate data-races around cnf.disable_ipv6
       net/ipv6: prevent NULL dereference in ip6_output()

 net/ipv6/addrconf.c   | 9 +++++----
 net/ipv6/ip6_input.c  | 2 +-
 net/ipv6/ip6_output.c | 2 +-
 3 files changed, 7 insertions(+), 6 deletions(-)

-- 
2.7.4

Re: [PATCH v5.15 0/2] Fix for CVE-2024-36901

Posted by Florian Fainelli 1 year, 6 months ago

On 7/9/24 03:19, Ashwin Kamat wrote:
> From: Ashwin Dayanand Kamat <ashwin.kamat@broadcom.com>
> 
> net/ipv6: annotate data-races around cnf.disable_ipv6
>         disable_ipv6 is read locklessly, add appropriate READ_ONCE() and WRITE_ONCE() annotations.
> 
> net/ipv6: prevent NULL dereference in ip6_output()
>         Fix for CVE-2024-36901

LGTM!

> 
> Ashwin Dayanand Kamat (2):
>         net/ipv6: annotate data-races around cnf.disable_ipv6
>         net/ipv6: prevent NULL dereference in ip6_output()
> 
>   net/ipv6/addrconf.c   | 9 +++++----
>   net/ipv6/ip6_input.c  | 2 +-
>   net/ipv6/ip6_output.c | 2 +-
>   3 files changed, 7 insertions(+), 6 deletions(-)
> 

-- 
Florian