]> git.ipfire.org Git - thirdparty/kernel/stable.git/commit
projects / thirdparty / kernel / stable.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: e08021b) | patch
libceph: prevent potential out-of-bounds writes in handle_auth_session_key()
authorziming zhang <ezrakiez@gmail.com>
Fri, 14 Nov 2025 08:56:10 +0000 (16:56 +0800)
committerGreg Kroah-Hartman <gregkh@linuxfoundation.org>
Sat, 6 Dec 2025 21:25:02 +0000 (06:25 +0900)
commit5ef575834ca99f719d7573cdece9df2fe2b72424
tree5091b29ffcdbd58a4a2d48760b72814795af5fc9tree | snapshot
parente08021b3b56b2407f37b5fe47b654be80cc665fbcommit | diff
libceph: prevent potential out-of-bounds writes in handle_auth_session_key()

commit 7fce830ecd0a0256590ee37eb65a39cbad3d64fc upstream.

The len field originates from untrusted network packets. Boundary
checks have been added to prevent potential out-of-bounds writes when
decrypting the connection secret or processing service tickets.

[ idryomov: changelog ]

Cc: stable@vger.kernel.org
Signed-off-by: ziming zhang <ezrakiez@gmail.com>
Reviewed-by: Ilya Dryomov <idryomov@gmail.com>
Signed-off-by: Ilya Dryomov <idryomov@gmail.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
net/ceph/auth_x.c diff | blob | blame | history
Mirror https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git