diff options
author | Xi Wang <xi.wang@gmail.com> | 2012-01-14 22:20:59 -0500 |
---|---|---|
committer | Sage Weil <sage@newdream.net> | 2012-02-02 12:49:11 -0800 |
commit | 32852a81bccd9e3d1953b894966393d1b546576d (patch) | |
tree | 8c21ce9f1a1e6ecfbeafdcc8552b77b3587bca5b /security | |
parent | ab434b60ab07f8c44246b6fb0cddee436687a09a (diff) | |
download | linux-32852a81bccd9e3d1953b894966393d1b546576d.tar.bz2 |
ceph: fix length validation in parse_reply_info()
"len" is read from network and thus needs validation. Otherwise, given
a bogus "len" value, p+len could be an out-of-bounds pointer, which is
used in further parsing.
Signed-off-by: Xi Wang <xi.wang@gmail.com>
Signed-off-by: Sage Weil <sage@newdream.net>
Diffstat (limited to 'security')
0 files changed, 0 insertions, 0 deletions