linux-toradex.git - Linux kernel for Apalis and Colibri modules

diff options

author	Tyler Hicks <tyhicks@canonical.com>	2013-06-20 13:13:59 -0700
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>	2013-07-13 11:42:25 -0700
commit	b96e7dacf24315a84f71ba0f15a603ba5f82b010 (patch)
tree	eecf2188f148182fb08437684e033ecbe5959759 /include/linux
parent	8bb495e3f02401ee6f76d1b1d77f3ac9f079e376 (diff)

libceph: Fix NULL pointer dereference in auth client code

commit 2cb33cac622afde897aa02d3dcd9fbba8bae839e upstream. A malicious monitor can craft an auth reply message that could cause a NULL function pointer dereference in the client's kernel. To prevent this, the auth_none protocol handler needs an empty ceph_auth_client_ops->build_request() function. CVE-2013-1059 Signed-off-by: Tyler Hicks <tyhicks@canonical.com> Reported-by: Chanam Park <chanam.park@hkpco.kr> Reviewed-by: Seth Arnold <seth.arnold@canonical.com> Reviewed-by: Sage Weil <sage@inktank.com> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>

Diffstat (limited to 'include/linux')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: