diff options
| author | Mateusz Jurczyk <mjurczyk@google.com> | 2017-06-08 11:13:36 +0200 |
|---|---|---|
| committer | David S. Miller <davem@davemloft.net> | 2017-06-09 10:10:24 -0400 |
| commit | defbcf2decc903a28d8398aa477b6881e711e3ea (patch) | |
| tree | e347eafc099d97c7570f56124209c90a5ebca176 /net/kcm | |
| parent | fc5b775da468e359154795afeb27be79b509b76d (diff) | |
| download | linux-defbcf2decc903a28d8398aa477b6881e711e3ea.tar.bz2 | |
af_unix: Add sockaddr length checks before accessing sa_family in bind and connect handlers
Verify that the caller-provided sockaddr structure is large enough to
contain the sa_family field, before accessing it in bind() and connect()
handlers of the AF_UNIX socket. Since neither syscall enforces a minimum
size of the corresponding memory region, very short sockaddrs (zero or
one byte long) result in operating on uninitialized memory while
referencing .sa_family.
Signed-off-by: Mateusz Jurczyk <mjurczyk@google.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
Diffstat (limited to 'net/kcm')
0 files changed, 0 insertions, 0 deletions