| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-Id: <20160611.103233.2027314173901979219.davem@davemloft.net> Date: Sat, 11 Jun 2016 10:32:33 -0700 (PDT) From: David Miller <davem@...emloft.net> To: erik.hugne@...il.com Cc: tipc-discussion@...ts.sourceforge.net, sploving1@...il.com, jon.maloy@...csson.com, netdev@...r.kernel.org, ying.xue@...driver.com Subject: Re: [tipc-discussion] [PATCH] tipc: fix potential null pointer dereference in the nla_data function From: Erik Hugne <erik.hugne@...il.com> Date: Sat, 11 Jun 2016 09:46:32 +0200 > On Jun 11, 2016 08:24, "David Miller" <davem@...emloft.net> wrote: >> >> From: Baozeng Ding <sploving1@...il.com> >> Date: Fri, 10 Jun 2016 10:26:59 +0800 >> >> > Before calling the nla_data function, make sure the argument is not > null. >> > Fix potential null pointer dereference vulnerability for this. >> > >> > Signed-off-by: Baozeng Ding <sploving1@...il.com> >> >> TIPC maintainers, please review. >> > > Nak, nlattrs does not come from userspace in the compat layer, it just > translates to the legacy TLV thing. > > //E This reply was done in a manner that the Message-ID got lost, therefore patchwork cannot associate your reply with the original patch posting and store it in the conversation attached to the patch. Please don't do that in the future, thanks.
Powered by blists - more mailing lists