| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Fri, 31 Jul 2009 16:28:04 +0200
From: Karsten Keil <isdn@...ux-pingi.de>
To: Roel Kluin <roel.kluin@...il.com>
Cc: netdev <netdev@...r.kernel.org>,
Andrew Morton <akpm@...ux-foundation.org>,
Andreas Eversberg <andreas@...rsberg.eu>
Subject: Re: [PATCH] mISDN: Read buffer overflow
On Freitag, 31. Juli 2009 15:43:59 Roel Kluin wrote:
Ouch !
Acked-by: Karsten Keil <keil@...systems.de>
> Check whether index is within bounds before testing the element.
>
> Signed-off-by: Roel Kluin <roel.kluin@...il.com>
> ---
> diff --git a/drivers/isdn/mISDN/l1oip_core.c
> b/drivers/isdn/mISDN/l1oip_core.c index c3b661a..7e5f30d 100644
> --- a/drivers/isdn/mISDN/l1oip_core.c
> +++ b/drivers/isdn/mISDN/l1oip_core.c
> @@ -1480,7 +1480,7 @@ l1oip_init(void)
> return -ENOMEM;
>
> l1oip_cnt = 0;
> - while (type[l1oip_cnt] && l1oip_cnt < MAX_CARDS) {
> + while (l1oip_cnt < MAX_CARDS && type[l1oip_cnt]) {
> switch (type[l1oip_cnt] & 0xff) {
> case 1:
> pri = 0;
--
To unsubscribe from this list: send the line "unsubscribe netdev" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists