net/ieee802154: fix uninit value bug in dgram_sendmsg (94160108) · Commits · Mirrors / github.com / raspberrypi_linux · GitLab

Commit 94160108 authored Sep 08, 2022 by

Haimin Zhang Committed by David S. Miller Sep 16, 2022

net/ieee802154: fix uninit value bug in dgram_sendmsg



There is uninit value bug in dgram_sendmsg function in
net/ieee802154/socket.c when the length of valid data pointed by the
msg->msg_name isn't verified.

We introducing a helper function ieee802154_sockaddr_check_size to
check namelen. First we check there is addr_type in ieee802154_addr_sa.
Then, we check namelen according to addr_type.

Also fixed in raw_bind, dgram_bind, dgram_connect.

Signed-off-by: Haimin Zhang <tcs_kernel@tencent.com>
Signed-off-by: David S. Miller <davem@davemloft.net>

parent 0727a9a5

Hide whitespace changes

Inline Side-by-side

mirror @mirror
mentioned in commit b8989e95
· Nov 01, 2022

mentioned in commit b8989e95

mentioned in commit b8989e95d74ebf1d0e9c32d1ffe2a5590a76b0a1

Toggle commit list

Please register or to comment