projects / firefly-linux-kernel-4.4.55.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 2d9c2e0) | patch
netlabel: out of bound access in cipso_v4_validate()
authorEric Dumazet <edumazet@google.com>
Fri, 3 Feb 2017 08:03:26 +0000 (00:03 -0800)
committerGreg Kroah-Hartman <gregkh@linuxfoundation.org>
Sat, 18 Feb 2017 15:39:26 +0000 (16:39 +0100)
commit13c3646dac70dbad417cce1ddfd87bd6f8650224
tree2bf2e82a8800c9aa0296f9187238d2e9714df3fetree | snapshot
parent2d9c2e011fd3f1be4e5643d6ad186faa5e50d4d1commit | diff
netlabel: out of bound access in cipso_v4_validate()

[ Upstream commit d71b7896886345c53ef1d84bda2bc758554f5d61 ]

syzkaller found another out of bound access in ip_options_compile(),
or more exactly in cipso_v4_validate()

Fixes: 20e2a8648596 ("cipso: handle CIPSO options correctly when NetLabel is disabled")
Fixes: 446fda4f2682 ("[NetLabel]: CIPSOv4 engine")
Signed-off-by: Eric Dumazet <edumazet@google.com>
Reported-by: Dmitry Vyukov <dvyukov@google.com>
Cc: Paul Moore <paul@paul-moore.com>
Acked-by: Paul Moore <paul@paul-moore.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
include/net/cipso_ipv4.h diff | blob | history
net/ipv4/cipso_ipv4.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.