]> git.ipfire.org Git - thirdparty/kernel/stable.git/commit
projects / thirdparty / kernel / stable.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 7e793ce) | patch
ipv6: sr: fix out-of-bounds access in SRH validation
authorDavid Lebrun <david.lebrun@uclouvain.be>
Tue, 18 Apr 2017 15:59:49 +0000 (17:59 +0200)
committerGreg Kroah-Hartman <gregkh@linuxfoundation.org>
Wed, 3 May 2017 15:37:40 +0000 (08:37 -0700)
commita024074740e75310e7c884bed6f1f6b354936727
treee1aa142a58ecdca3310e9d65da964604aa44b795tree
parent7e793ce3b3e1384a657bdcd74c9404247302893ccommit | diff
ipv6: sr: fix out-of-bounds access in SRH validation

[ Upstream commit 2f3bb64247b5b083d05ccecad9c2e139bbfdc294 ]

This patch fixes an out-of-bounds access in seg6_validate_srh() when the
trailing data is less than sizeof(struct sr6_tlv).

Reported-by: Andrey Konovalov <andreyknvl@google.com>
Cc: Andrey Konovalov <andreyknvl@google.com>
Signed-off-by: David Lebrun <david.lebrun@uclouvain.be>
Signed-off-by: David S. Miller <davem@davemloft.net>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
net/ipv6/seg6.c diff | blob | blame | history
Mirror https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git