Gitiles
Code Review Sign In
gerrit-public.fairphone.software / kernel / msm-4.9 / 4b8d7cf87707123984a45d9066df5f92bb0f5a0d
commit4b8d7cf87707123984a45d9066df5f92bb0f5a0d[log] [tgz]
authorMurphy Zhou <jencce.kernel@gmail.com>Sat Sep 21 19:26:00 2019 +0800
committerGreg Kroah-Hartman <gregkh@linuxfoundation.org>Sat Oct 05 12:30:36 2019 +0200
tree6e53008bdc7cd13cc8436ca6a6ec3691733d5ad5
parent75aaa6f61279758196e5a82b77288109a6a0b5a2 [diff]
CIFS: fix max ea value size

commit 63d37fb4ce5ae7bf1e58f906d1bf25f036fe79b2 upstream.

It should not be larger then the slab max buf size. If user
specifies a larger size, it passes this check and goes
straightly to SMB2_set_info_init performing an insecure memcpy.

Signed-off-by: Murphy Zhou <jencce.kernel@gmail.com>
Reviewed-by: Aurelien Aptel <aaptel@suse.com>
CC: Stable <stable@vger.kernel.org>
Signed-off-by: Steve French <stfrench@microsoft.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
1 file changed
tree: 6e53008bdc7cd13cc8436ca6a6ec3691733d5ad5
  1. arch/
  2. block/
  3. certs/
  4. crypto/
  5. Documentation/
  6. drivers/
  7. firmware/
  8. fs/
  9. include/
  10. init/
  11. ipc/
  12. kernel/
  13. lib/
  14. mm/
  15. net/
  16. samples/
  17. scripts/
  18. security/
  19. sound/
  20. tools/
  21. usr/
  22. virt/
  23. .cocciconfig
  24. .get_maintainer.ignore
  25. .gitattributes
  26. .gitignore
  27. .mailmap
  28. COPYING
  29. CREDITS
  30. Kbuild
  31. Kconfig
  32. MAINTAINERS
  33. Makefile
  34. README
  35. REPORTING-BUGS