Commit d887e2c0 authored by Paulo Alcantara's avatar Paulo Alcantara Committed by ZhaoLong Wang
Browse files

smb: client: fix potential OOB in smb2_dump_detail() 

mainline inclusion
from mainline-v6.7-rc7
commit 567320c46a60a3c39b69aa1df802d753817a3f86
category: bugfix
bugzilla: https://gitee.com/src-openeuler/kernel/issues/I8MXXY
CVE: CVE-2023-6610

Reference: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=567320c46a60a3c39b69aa1df802d753817a3f86



--------------------------------

Validate SMB message with ->check_message() before calling
->calc_smb_size().

This fixes CVE-2023-6610.

Reported-by: default avatar <j51569436@gmail.com>
Closes: https://bugzilla.kernel.org/show_bug.cgi?id=218219


Cc; stable@vger.kernel.org
Signed-off-by: default avatarPaulo Alcantara <pc@manguebit.com>
Signed-off-by: default avatarSteve French <stfrench@microsoft.com>
Signed-off-by: default avatarZhaoLong Wang <wangzhaolong1@huawei.com>

Conflicts:
	fs/cifs/smb2ops.c
	fs/cifs/smb2misc.c
parent c114dc3b
Show whitespace changes
Inline Side-by-side
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please to comment