iv/linux
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
linux/net
History
Stefan Hajnoczi dc16b4393f sunrpc/cache: fix off-by-one in qword_get() 
commit b7052cd7bcf3c1478796e93e3dff2b44c9e82943 upstream.

The qword_get() function NUL-terminates its output buffer.  If the input
string is in hex format \xXXXX... and the same length as the output
buffer, there is an off-by-one:

  int qword_get(char **bpp, char *dest, int bufsize)
  {
      ...
      while (len < bufsize) {
          ...
          *dest++ = (h << 4) | l;
          len++;
      }
      ...
      *dest = '\0';
      return len;
  }

This patch ensures the NUL terminator doesn't fall outside the output
buffer.

Signed-off-by: Stefan Hajnoczi <stefanha@redhat.com>
Signed-off-by: J. Bruce Fields <bfields@redhat.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
2016-03-03 15:07:29 -08:00
..
6lowpan
6lowpan: put mcast compression in an own function
2015-10-21 00:49:25 +02:00
9p
IB/cma: Add support for network namespaces
2015-10-28 12:32:48 -04:00
802
8021q
vlan: Do not put vlan headers back on bridge and macvlan ports
2015-11-17 14:38:35 -05:00
appletalk
net: Pass kern from net_proto_family.create to sk_alloc
2015-05-11 10:50:17 -04:00
atm
atm: deal with setting entry before mkip was called
2015-09-17 22:13:32 -07:00
ax25
net: add validation for the socket syscall protocol argument
2015-12-14 16:09:30 -05:00
batman-adv
batman-adv: Drop immediate orig_node free function
2016-01-31 11:29:02 -08:00
bluetooth
Bluetooth: 6lowpan: Fix handling of uncompressed IPv6 packets
2016-03-03 15:07:16 -08:00
bridge
switchdev: Require RTNL mutex to be held when sending FDB notifications
2016-03-03 15:07:04 -08:00
caif
net: rename SOCK_ASYNC_NOSPACE and SOCK_ASYNC_WAITDATA
2015-12-01 15:45:05 -05:00
can
can: avoid using timeval for uapi
2015-10-13 17:42:34 +02:00
ceph
libceph: don't spam dmesg with stray reply warnings
2016-03-03 15:07:26 -08:00
core
IFF_NO_QUEUE: Fix for drivers not calling ether_setup()
2016-03-03 15:07:07 -08:00
dcb
net/dcb: make dcbnl.c explicitly non-modular
2015-10-09 07:52:27 -07:00
dccp
tcp/dccp: fix another race at listener dismantle
2016-03-03 15:07:07 -08:00
decnet
net: add validation for the socket syscall protocol argument
2015-12-14 16:09:30 -05:00
dns_resolver
net: dns_resolver: convert time_t to time64_t
2015-11-18 16:27:46 -05:00
dsa
net: dsa: use switchdev obj for VLAN add/del ops
2015-11-01 15:56:11 -05:00
ethernet
net: help compiler generate better code in eth_get_headlen
2015-09-28 22:51:15 -07:00
hsr
net/hsr: fix a warning message
2015-11-23 14:56:15 -05:00
ieee802154
net: fix percpu memory leaks
2015-11-02 22:47:14 -05:00
ipv4
rtnl: RTM_GETNETCONF: fix wrong return value
2016-03-03 15:07:07 -08:00
ipv6
rtnl: RTM_GETNETCONF: fix wrong return value
2016-03-03 15:07:07 -08:00
ipx
net: Pass kern from net_proto_family.create to sk_alloc
2015-05-11 10:50:17 -04:00
irda
net: add validation for the socket syscall protocol argument
2015-12-14 16:09:30 -05:00
iucv
af_iucv: Validate socket address length in iucv_sock_bind()
2016-03-03 15:07:03 -08:00
key
af_key: fix two typos
2015-10-23 03:05:19 -07:00
l2tp
l2tp: Fix error creating L2TP tunnels
2016-03-03 15:07:07 -08:00
l3mdev
net: Add netif_is_l3_slave
2015-10-07 04:27:43 -07:00
lapb
llc
tcp: fix recv with flags MSG_WAITALL | MSG_PEEK
2015-07-27 01:06:53 -07:00
mac80211
mac80211: Requeue work after scan complete for all VIF types.
2016-03-03 15:07:26 -08:00
mac802154
mac802154: llsec: use kzfree
2015-10-21 00:49:24 +02:00
mpls
mpls: make via address optional for multipath routes
2015-12-12 00:43:44 -05:00
netfilter
netfilter: nft_ct: include direction when dumping NFT_CT_L3PROTOCOL key
2015-12-18 14:45:45 +01:00
netlabel
netlink
mm, page_alloc: distinguish between being unable to sleep, unwilling to sleep and avoiding waking kswapd
2015-11-06 17:50:42 -08:00
netrom
netfilter: Remove spurios included of netfilter.h
2015-06-18 21:14:32 +02:00
nfc
net: rename SOCK_ASYNC_NOSPACE and SOCK_ASYNC_WAITDATA
2015-12-01 15:45:05 -05:00
openvswitch
lwt: fix rx checksum setting for lwt devices tunneling over ipv6
2016-03-03 15:07:04 -08:00
packet
packet: Allow packets with only a header (but no payload)
2015-11-29 22:17:17 -05:00
phonet
phonet: properly unshare skbs in phonet_rcv()
2016-01-31 11:29:00 -08:00
rds
RDS: fix race condition when sending a message on unbound socket
2015-11-24 17:20:09 -05:00
rfkill
rfkill: fix rfkill_fop_read wait_event usage
2016-03-03 15:07:26 -08:00
rose
Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net
2015-06-24 02:58:51 -07:00
rxrpc
net: rename SOCK_ASYNC_NOSPACE and SOCK_ASYNC_WAITDATA
2015-12-01 15:45:05 -05:00
sched
net_sched fix: reclassification needs to consider ether protocol changes
2016-03-03 15:07:07 -08:00
sctp
sctp: Fix port hash table size computation
2016-03-03 15:07:07 -08:00
sunrpc
sunrpc/cache: fix off-by-one in qword_get()
2016-03-03 15:07:29 -08:00
switchdev
switchdev: Require RTNL mutex to be held when sending FDB notifications
2016-03-03 15:07:04 -08:00
tipc
tipc: unlock in error path
2016-03-03 15:07:07 -08:00
unix
unix_diag: fix incorrect sign extension in unix_lookup_by_ino
2016-03-03 15:07:07 -08:00
vmw_vsock
VSOCK: call sk->sk_data_ready() on accept()
2015-11-04 22:03:10 -05:00
wimax
net:wimax: Fix doucble word "the the" in networking.xml
2015-08-09 22:43:52 -07:00
wireless
nl80211: Fix potential memory leak in nl80211_connect
2015-12-15 13:11:26 +01:00
x25
net: Pass kern from net_proto_family.create to sk_alloc
2015-05-11 10:50:17 -04:00
xfrm
net: preserve IP control block during GSO segmentation
2016-01-31 11:29:00 -08:00
compat.c
Kconfig
net: Introduce L3 Master device abstraction
2015-09-29 20:40:32 -07:00
Makefile
net: Introduce L3 Master device abstraction
2015-09-29 20:40:32 -07:00
socket.c
net, socket, socket_wq: fix missing initialization of flags
2015-12-30 16:38:01 -05:00
sysctl_net.c
net: sysctl: fix a kmemleak warning
2015-10-23 06:22:08 -07:00