commit | a5204d74553af22067fc3065c91baa75eead3de5 | [log] [tgz] |
---|---|---|
author | Teow Wan Yee <wy.teow@hi-p.com> | Wed Sep 21 17:04:58 2016 +0800 |
committer | Teemu Hukkanen <teemu@fairphone.com> | Tue Oct 04 20:20:50 2016 +0200 |
tree | dd634f0016eb835987f791fefc26db42591052a7 | |
parent | 6711b159e252d3dccc484ce1b525b3204f287628 [diff] |
FPII-2399 : Elevation of privilege vulnerability in kernel networking subsystem (device specific) CVE-2016-7117 A-30515201 There is a potential use-after-free vulnerability when the underlying recvmsg calls return some packets and then hit an error, which will make recvmmsg set sock->sk->sk_err. The fix is designed to prevent the setting of sock->sk->sk_err after an error, preventing the potential use-after-free vulnerability. Change-Id: I6fefd964e68d863416a2ee5d75f6b8d1ce5f016b