commit a072d3e9840e924180044f9b68041b5c338a812bAuthor: Phil Blundell <philb@gn

1. commit a072d3e9840e924180044f9b68041b5c338a812b
2. Author: Phil Blundell <philb@gnu.org>
3. Date: Wed Nov 24 11:51:47 2010 -0800
4.  
5. econet: fix CVE-2010-3848
6.  
7. commit a27e13d370415add3487949c60810e36069a23a6 upstream.
8.  
9. Don't declare variable sized array of iovecs on the stack since this
10. could cause stack overflow if msg->msgiovlen is large. Instead, coalesce
11. the user-supplied data into a new buffer and use a single iovec for it.
12.  
13. Signed-off-by: Phil Blundell <philb@gnu.org>
14. Signed-off-by: David S. Miller <davem@davemloft.net>
15. Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>
16.  
17. commit 29d0e9fdced7e35db2ac8ecea49e5bc3c7115b98
18. Author: Phil Blundell <philb@gnu.org>
19. Date: Wed Nov 24 11:49:53 2010 -0800
20.  
21. econet: fix CVE-2010-3850
22.  
23. commit 16c41745c7b92a243d0874f534c1655196c64b74 upstream.
24.  
25. Add missing check for capable(CAP_NET_ADMIN) in SIOCSIFADDR operation.
26.  
27. Signed-off-by: Phil Blundell <philb@gnu.org>
28. Signed-off-by: David S. Miller <davem@davemloft.net>
29. Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>
30.  
31. commit 3ca62aac185300f80dad0e412c1033d2ef8a1b44
32. Author: Phil Blundell <philb@gnu.org>
33. Date: Wed Nov 24 11:49:19 2010 -0800
34.  
35. econet: disallow NULL remote addr for sendmsg(), fixes CVE-2010-3849
36.  
37. commit fa0e846494792e722d817b9d3d625a4ef4896c96 upstream.
38.  
39. Later parts of econet_sendmsg() rely on saddr != NULL, so return early
40. with EINVAL if NULL was passed otherwise an oops may occur.
41.  
42. Signed-off-by: Phil Blundell <philb@gnu.org>
43. Signed-off-by: David S. Miller <davem@davemloft.net>
44. Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>