| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Thu, 5 Oct 2023 18:10:13 -0400 From: Alexander Aring <aahringo@...hat.com> To: Dan Carpenter <dan.carpenter@...aro.org> Cc: Alexander Aring <alex.aring@...il.com>, Stefan Schmidt <stefan@...enfreihafen.org>, Miquel Raynal <miquel.raynal@...tlin.com>, "David S. Miller" <davem@...emloft.net>, Eric Dumazet <edumazet@...gle.com>, Jakub Kicinski <kuba@...nel.org>, Paolo Abeni <pabeni@...hat.com>, Angus Chen <angus.chen@...uarmicro.com>, Luis Chamberlain <mcgrof@...nel.org>, Joel Granados <joel.granados@...il.com>, linux-wpan@...r.kernel.org, netdev@...r.kernel.org, kernel-janitors@...r.kernel.org Subject: Re: [PATCH net] 6lowpan: fix double free in lowpan_frag_rcv() Hi, On Wed, Oct 4, 2023 at 5:22 AM Dan Carpenter <dan.carpenter@...aro.org> wrote: > > The skb() is freed by the caller in lowpan_invoke_rx_handlers() so this > free is a double free. > lowpan_frag_rcv() does not call lowpan_invoke_rx_handlers(), it calls lowpan_invoke_frag_rx_handlers(), or is there something I overlooked here? - Alex
Powered by blists - more mailing lists