The following commits are needed to fix CVE-2021-20322: ipv4: [1] https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?i... [2] https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?i...
ipv6: [3] https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?i... [4] https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?i...
Commit [2] is already present in 4.19 stable, so backport the remaining three fixes with minor context adjustments.
Eric Dumazet (3): ipv4: use siphash instead of Jenkins in fnhe_hashfun() ipv6: use siphash in rt6_exception_hash() ipv6: make exception cache less predictible
net/ipv4/route.c | 12 ++++++------ net/ipv6/route.c | 25 ++++++++++++++++++------- 2 files changed, 24 insertions(+), 13 deletions(-)