| commit | ff134d489673b3d678d313e8dddae24c05eb0291 | |
| author | Vlad Yasevich <vladislav.yasevich@hp.com> | |
| Wed, 3 Sep 2008 08:02:37 +0000 (3 01:02 -0700) | ||
| committer | Greg Kroah-Hartman <gregkh@suse.de> | |
| Mon, 8 Sep 2008 11:44:25 +0000 (8 04:44 -0700) | ||
| tree | 1fcfae8c6465999cd74ea0e9cf1266020c27b0c1 | treesnapshot (tar.gz zip) |
| parent | 53144b419e176e51157f6b9fc651ab9e733cb000 | commitdiff |
sctp: fix random memory dereference with SCTP_HMAC_IDENT option.
[ Upstream commit d97240552cd98c4b07322f30f66fd9c3ba4171de ]
The number of identifiers needs to be checked against the option
length. Also, the identifier index provided needs to be verified
to make sure that it doesn't exceed the bounds of the array.
Signed-off-by: Vlad Yasevich <vladislav.yasevich@hp.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>
[ Upstream commit d97240552cd98c4b07322f30f66fd9c3ba4171de ]
The number of identifiers needs to be checked against the option
length. Also, the identifier index provided needs to be verified
to make sure that it doesn't exceed the bounds of the array.
Signed-off-by: Vlad Yasevich <vladislav.yasevich@hp.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>
| net/sctp/auth.c | diffblobblamehistory | |
| net/sctp/socket.c | diffblobblamehistory |