]> git.proxmox.com Git - mirror_ubuntu-zesty-kernel.git/commit
projects / mirror_ubuntu-zesty-kernel.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 213e19c) | patch
net/packet: fix overflow in check for tp_reserve
authorAndrey Konovalov <andreyknvl@google.com>
Wed, 29 Mar 2017 14:11:22 +0000 (16:11 +0200)
committerTim Gardner <tim.gardner@canonical.com>
Tue, 4 Apr 2017 13:31:10 +0000 (14:31 +0100)
commit1d27b680e9c33bbfb2d657b0eeb0c8e6233cc92a
tree9e7ed70c1ae8299885f5b819e6ecc34e05be4327tree
parent213e19c75279fca673344aa0b5f00ba1f454d5aacommit | diff
net/packet: fix overflow in check for tp_reserve

When calculating po->tp_hdrlen + po->tp_reserve the result can overflow.

Fix by checking that tp_reserve <= INT_MAX on assign.

Signed-off-by: Andrey Konovalov <andreyknvl@google.com>
Acked-by: Eric Dumazet <edumazet@google.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
BugLink: https://bugs.launchpad.net/bugs/1678009
CVE-2017-7308
(cherry picked from linux-next commit bcc5364bdcfe131e6379363f089e7b4108d35b70)
Signed-off-by: Seth Forshee <seth.forshee@canonical.com>
net/packet/af_packet.c diff | blob | blame | history
ubuntu-zesty-kernel mirror