| commit | 81cb675339c33e6cc30c14e367502692a90b9736 | |
| author | Ben Hutchings <bhutchings@solarflare.com> | |
| Mon, 28 Jun 2010 08:44:07 +0000 (28 08:44 +0000) | ||
| committer | Greg Kroah-Hartman <gregkh@suse.de> | |
| Mon, 2 Aug 2010 17:20:53 +0000 (2 10:20 -0700) | ||
| tree | 81640cb80bca5e64c55e43d11cda3b51dd80fd8f | treesnapshot (tar.gz zip) |
| parent | 8ab78dc05e61a6840a041d1a973616e9815dd84c | commitdiff |
ethtool: Fix potential kernel buffer overflow in ETHTOOL_GRXCLSRLALL
commit db048b69037e7fa6a7d9e95a1271a50dc08ae233 upstream.
On a 32-bit machine, info.rule_cnt >= 0x40000000 leads to integer
overflow and the buffer may be smaller than needed. Since
ETHTOOL_GRXCLSRLALL is unprivileged, this can presumably be used for at
least denial of service.
Signed-off-by: Ben Hutchings <bhutchings@solarflare.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>
commit db048b69037e7fa6a7d9e95a1271a50dc08ae233 upstream.
On a 32-bit machine, info.rule_cnt >= 0x40000000 leads to integer
overflow and the buffer may be smaller than needed. Since
ETHTOOL_GRXCLSRLALL is unprivileged, this can presumably be used for at
least denial of service.
Signed-off-by: Ben Hutchings <bhutchings@solarflare.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>
| net/core/ethtool.c | diffblobblamehistory |