Tree - kernel/kernel-source - Pagure for openSUSE

Blob History Raw

	eff483	`From 170d40fe8a20eafd725b0ce3a5685e0c4b758cbf Mon Sep 17 00:00:00 2001`
	eff483	`From: Denis Kirjanov <denis.kirjanov@suse.com>`
	eff483	`Date: Fri, 28 Jan 2022 19:43:28 +0300`
	eff483	`Subject: [PATCH] net: tipc: validate domain record count on input`
	eff483	Patch-mainline: Not yet, will be submitted upstream`
Denis Kirjanov	0369cb	`References: bsc#1195254 CVE-2022-0435`
	eff483
	eff483	`Signed-off-by: Denis Kirjanov <denis.kirjanov@suse.com>`
	eff483	`---`
	eff483	`net/tipc/monitor.c \| 2 ++`
	eff483	`1 file changed, 2 insertions(+)`
	eff483
	eff483	`diff --git a/net/tipc/monitor.c b/net/tipc/monitor.c`
	eff483	`index 254ddc2c3914..99fcb42d0af2 100644`
	eff483	`--- a/net/tipc/monitor.c`
	eff483	`+++ b/net/tipc/monitor.c`
	eff483	`@@ -463,6 +463,8 @@ void tipc_mon_rcv(struct net *net, void`
	eff483	`return;`
	eff483	`if ((dlen < new_dlen) \|\| ntohs(arrv_dom->len) != new_dlen)`
	eff483	`return;`
	eff483	`+ if (new_member_cnt >= MAX_MON_DOMAIN)`
	eff483	`+ return;`
	eff483
	eff483	`/* Synch generation numbers with peer if link just came up */`
	eff483	`if (!state->synched) {`
	eff483	`--`
	eff483	`2.16.4`
	eff483