AX.25: Prevent integer overflows in connect and sendmsg - starfive-tech/linux.git - StarFive Tech Linux Kernel for VisionFive (JH7110) boards (mirror)

diff options

author	Dan Carpenter <dan.carpenter@oracle.com>	2020-07-23 17:49:57 +0300
committer	David S. Miller <davem@davemloft.net>	2020-07-23 22:09:57 +0300
commit	17ad73e941b71f3bec7523ea4e9cbc3752461c2d (patch)
tree	ab46ae77452cfd8c5be79e9601d1d149c8b489e1 /net/ipv4/tcp_input.c
parent	e6827d1abdc9b061a57d7b7d3019c4e99fabea2f (diff)
download	linux-17ad73e941b71f3bec7523ea4e9cbc3752461c2d.tar.xz

AX.25: Prevent integer overflows in connect and sendmsg

We recently added some bounds checking in ax25_connect() and ax25_sendmsg() and we so we removed the AX25_MAX_DIGIS checks because they were no longer required. Unfortunately, I believe they are required to prevent integer overflows so I have added them back. Fixes: 8885bb0621f0 ("AX.25: Prevent out-of-bounds read in ax25_sendmsg()") Fixes: 2f2a7ffad5c6 ("AX.25: Fix out-of-bounds read in ax25_connect()") Signed-off-by: Dan Carpenter <dan.carpenter@oracle.com> Signed-off-by: David S. Miller <davem@davemloft.net>

Diffstat (limited to 'net/ipv4/tcp_input.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: