linux-stable-mirror/net/ceph/auth_x.c at 0da170b9e600da6930cfb8352e4cc036db3b6159

mirror of https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git synced 2026-04-24 10:49:54 +02:00

Files

T

ziming zhang 5ef575834c libceph: prevent potential out-of-bounds writes in handle_auth_session_key()

commit 7fce830ecd upstream.

The len field originates from untrusted network packets. Boundary
checks have been added to prevent potential out-of-bounds writes when
decrypting the connection secret or processing service tickets.

[ idryomov: changelog ]

Cc: stable@vger.kernel.org
Signed-off-by: ziming zhang <ezrakiez@gmail.com>
Reviewed-by: Ilya Dryomov <idryomov@gmail.com>
Signed-off-by: Ilya Dryomov <idryomov@gmail.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>

2025-12-07 06:25:02 +09:00

27 KiB

Raw Blame History

View Raw

27 KiB Raw Blame History

27 KiB

Raw Blame History