commit | 4f5f5411f0c14ac0b61d5e6a77d996dd3d5b5fd3 | [log] [tgz] |
---|---|---|
author | Oliver Neukum <oneukum@suse.com> | Thu Feb 17 14:10:44 2022 +0100 |
committer | Greg Kroah-Hartman <gregkh@linuxfoundation.org> | Wed Mar 02 11:42:47 2022 +0100 |
tree | 5e8a7ac457f68e0e5139639c522750c5faae3f15 | |
parent | 55eec5c630eac8034bbfb772bb2e2bccc0777a2b [diff] |
sr9700: sanity check for packet length commit e9da0b56fe27206b49f39805f7dcda8a89379062 upstream. A malicious device can leak heap data to user space providing bogus frame lengths. Introduce a sanity check. Signed-off-by: Oliver Neukum <oneukum@suse.com> Reviewed-by: Grant Grundler <grundler@chromium.org> Signed-off-by: David S. Miller <davem@davemloft.net> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>