| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <YP9tZryTbUGaQQ+e@decadent.org.uk>
Date: Tue, 27 Jul 2021 04:20:22 +0200
From: Ben Hutchings <ben@...adent.org.uk>
To: Marcelo Ricardo Leitner <marcelo.leitner@...il.com>
Cc: netdev@...r.kernel.org, linux-sctp@...r.kernel.org,
Ilja Van Sprundel <ivansprundel@...ctive.com>,
Neil Horman <nhorman@...driver.com>,
Vlad Yasevich <vyasevich@...il.com>,
Xin Long <lucien.xin@...il.com>, carnil@...ian.org
Subject: Re: [PATCH net 1/4] sctp: validate from_addr_param return
On Mon, Jun 28, 2021 at 04:13:41PM -0300, Marcelo Ricardo Leitner wrote:
[...]
> @@ -1174,7 +1175,8 @@ static struct sctp_association *__sctp_rcv_asconf_lookup(
> if (unlikely(!af))
> return NULL;
>
> - af->from_addr_param(&paddr, param, peer_port, 0);
> + if (af->from_addr_param(&paddr, param, peer_port, 0))
> + return NULL;
>
> return __sctp_lookup_association(net, laddr, &paddr, transportp);
> }
[...]
This condition needs to be inverted, doesn't it?
Ben.
--
Ben Hutchings
friends: People who know you well, but like you anyway.
Download attachment "signature.asc" of type "application/pgp-signature" (834 bytes)
Powered by blists - more mailing lists