Bug 155970
Summary: | 20050301 netfilter: fix crash on nat+icmp packets | ||
---|---|---|---|
Product: | Red Hat Enterprise Linux 4 | Reporter: | Mark J. Cox <mjc> |
Component: | kernel | Assignee: | David Miller <davem> |
Status: | CLOSED NOTABUG | QA Contact: | Brian Brock <bbrock> |
Severity: | medium | Docs Contact: | |
Priority: | medium | ||
Version: | 4.0 | CC: | davej |
Target Milestone: | --- | Keywords: | Security |
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | impact=unknown,public=20050302,reported=20050302,source=lkml | ||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2005-07-27 06:59:52 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Mark J. Cox
2005-04-26 12:13:56 UTC
Rusty's patch is enormous, breaks the kABI of netfilter completely, and we're still fixing fallout from that change in 2.6.12-rcX But the patch in the netfilter posting is OK, simple, not a kABI breaker, and correct. I'll try to cons up a clean RHEL4 patch for davej, but no promises on getting to that this week as I'm very busy with existing stuff and leave for Chicago on Thursday afternoon. Actually, the 2.6.9 based code we have in RHEL4 does not have this bug. It references the IP header via skb->nh.iph which is fine. Later code used a local variable to store the pointer, which is what introduced the bug. Therefore RHEL4 does not have this problem and we need do nothing. |