Description of problem: While reviewing commit 1c40be12f7d8ca1d387510d39787b12e512a7ce8 (CVE-2010-2942), Jeff Mahoney audited other users of tc_action_ops->dump for information leaks. That commit covered almost all of them but act_police still had a leak. opt.limit and opt.capab aren't zeroed out before the structure is passed out. Upstream commit: http://git.kernel.org/linus/0f04cfd098fb81fded74e78ea1a1b86cc6c6c31e
This issue has been addressed in following products: Red Hat Enterprise Linux 4 Via RHSA-2010:0779 https://rhn.redhat.com/errata/RHSA-2010-0779.html
This issue has been addressed in following products: Red Hat Enterprise Linux 5 Via RHSA-2010:0839 https://rhn.redhat.com/errata/RHSA-2010-0839.html
This issue has been addressed in following products: Red Hat Enterprise Linux 6 Via RHSA-2011:0007 https://rhn.redhat.com/errata/RHSA-2011-0007.html
This issue has been addressed in following products: MRG for RHEL-5 Via RHSA-2011:0330 https://rhn.redhat.com/errata/RHSA-2011-0330.html