airo: Fix read overflows sending packets - user/sven/linux.git

diff options

author	Dan Carpenter <dan.carpenter@oracle.com>	2020-05-27 21:48:30 +0300
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>	2020-06-07 13:16:49 +0200
commit	5438830ea8bc7e4d3bc606844d4f2f77d6e62ad7 (patch)
tree	ffbce1f16b4a9a412d03967528bce88f0509b339 /scripts/patch-kernel
parent	897b7c720803aacf7c94a0054648210d7c737f06 (diff)

airo: Fix read overflows sending packets

commit 11e7a91994c29da96d847f676be023da6a2c1359 upstream. The problem is that we always copy a minimum of ETH_ZLEN (60) bytes from skb->data even when skb->len is less than ETH_ZLEN so it leads to a read overflow. The fix is to pad skb->data to at least ETH_ZLEN bytes. Cc: <stable@vger.kernel.org> Reported-by: Hu Jiahui <kirin.say@gmail.com> Signed-off-by: Dan Carpenter <dan.carpenter@oracle.com> Reviewed-by: Eric Dumazet <edumazet@google.com> Signed-off-by: Kalle Valo <kvalo@codeaurora.org> Link: https://lore.kernel.org/r/20200527184830.GA1164846@mwanda Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>

Diffstat (limited to 'scripts/patch-kernel')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: