[NETFILTER]: Fix small information leak in SO_ORIGINAL_DST (CVE-2006-1343)
authorMarcel Holtmann <marcel@holtmann.org>
Mon, 29 May 2006 05:50:18 +0000 (22:50 -0700)
committerDavid S. Miller <davem@davemloft.net>
Mon, 29 May 2006 05:50:18 +0000 (22:50 -0700)
commit6c813c3fe9e30fcf3c4d94d2ba24108babd745b0
tree05420eaf319033bb5aad5a66b0f97e54ca2f896e
parentd9ec5ad24ce80b7ef69a0717363db661d13aada5
[NETFILTER]: Fix small information leak in SO_ORIGINAL_DST (CVE-2006-1343)

It appears that sockaddr_in.sin_zero is not zeroed during
getsockopt(...SO_ORIGINAL_DST...) operation. This can lead
to an information leak (CVE-2006-1343).

Signed-off-by: Marcel Holtmann <marcel@holtmann.org>
Signed-off-by: Patrick McHardy <kaber@trash.net>
Signed-off-by: David S. Miller <davem@davemloft.net>
net/ipv4/netfilter/ip_conntrack_core.c
net/ipv4/netfilter/nf_conntrack_l3proto_ipv4.c