]> git.ipfire.org Git - thirdparty/kernel/linux.git/commit
projects / thirdparty / kernel / linux.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 570e454) | patch
icmp: prevent possible overflow in icmp_global_allow()
authorEric Dumazet <edumazet@google.com>
Mon, 16 Feb 2026 14:28:28 +0000 (14:28 +0000)
committerJakub Kicinski <kuba@kernel.org>
Thu, 19 Feb 2026 00:46:36 +0000 (16:46 -0800)
commit034bbd806298e9ba4197dd1587b0348ee30996ea
tree080ddb58f764a40931b5d6f3eb60bfbbf8f8959dtree
parent570e4549f63293ca4973ef367ff02554f3e3dfc2commit | diff
icmp: prevent possible overflow in icmp_global_allow()

Following expression can overflow
if sysctl_icmp_msgs_per_sec is big enough.

sysctl_icmp_msgs_per_sec * delta / HZ;

Fixes: 4cdf507d5452 ("icmp: add a global rate limitation")
Signed-off-by: Eric Dumazet <edumazet@google.com>
Reviewed-by: Kuniyuki Iwashima <kuniyu@google.com>
Link: https://patch.msgid.link/20260216142832.3834174-2-edumazet@google.com
Signed-off-by: Jakub Kicinski <kuba@kernel.org>
net/ipv4/icmp.c diff | blob | blame | history
A mirror of Linus' kernel repository