lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [day] [month] [year] [list] 
Message-Id: <162662700503.19662.17700177821485021975.git-patchwork-notify@kernel.org>
Date:   Sun, 18 Jul 2021 16:50:05 +0000
From:   patchwork-bot+netdevbpf@...nel.org
To:     Xin Long <lucien.xin@...il.com>
Cc:     netdev@...r.kernel.org, davem@...emloft.net, kuba@...nel.org,
        linux-sctp@...r.kernel.org, marcelo.leitner@...il.com
Subject: Re: [PATCH net] sctp: trim optlen when it's a huge value in
 sctp_setsockopt

Hello:

This patch was applied to netdev/net.git (refs/heads/master):

On Sat, 17 Jul 2021 17:19:19 -0400 you wrote:
> After commit ca84bd058dae ("sctp: copy the optval from user space in
> sctp_setsockopt"), it does memory allocation in sctp_setsockopt with
> the optlen, and it would fail the allocation and return error if the
> optlen from user space is a huge value.
> 
> This breaks some sockopts, like SCTP_HMAC_IDENT, SCTP_RESET_STREAMS and
> SCTP_AUTH_KEY, as when processing these sockopts before, optlen would
> be trimmed to a biggest value it needs when optlen is a huge value,
> instead of failing the allocation and returning error.
> 
> [...]

Here is the summary with links:
  - [net] sctp: trim optlen when it's a huge value in sctp_setsockopt
    https://git.kernel.org/netdev/net/c/2f3fdd8d4805

You are awesome, thank you!
--
Deet-doot-dot, I am a bot.
https://korg.docs.kernel.org/patchwork/pwbot.html

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ