lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Message-ID: <f41c06eafd983584647e7d61561ea6282cdb735e.camel@redhat.com> Date: Thu, 02 Nov 2023 12:14:53 +0100 From: Paolo Abeni <pabeni@...hat.com> To: Bragatheswaran Manickavel <bragathemanick0908@...il.com>, davem@...emloft.net, edumazet@...gle.com, kuba@...nel.org Cc: dccp@...r.kernel.org, netdev@...r.kernel.org, linux-kernel@...r.kernel.org, syzbot+c71bc336c5061153b502@...kaller.appspotmail.com Subject: Re: [PATCH net] dccp: check for ccid in ccid_hc_tx_send_packet On Sat, 2023-10-28 at 20:11 +0530, Bragatheswaran Manickavel wrote: > ccid_hc_tx_send_packet might be called with a NULL ccid pointer > leading to a NULL pointer dereference You should describe how such event could happen. > Below mentioned commit has similarly changes > commit 276bdb82dedb ("dccp: check ccid before dereferencing") > > Reported-by: syzbot+c71bc336c5061153b502@...kaller.appspotmail.com > Closes: https://syzkaller.appspot.com/bug?extid=c71bc336c5061153b502 and add a suitable fixes here. (beyond taking care of other critical code paths, as reported by Eric). Thanks! Paolo
Powered by blists - more mailing lists