git.openpandora.org / pandora-kernel.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: ab434b6)
ceph: fix length validation in parse_reply_info()
authorXi Wang <xi.wang@gmail.com>
Sun, 15 Jan 2012 03:20:59 +0000 (22:20 -0500)
committerSage Weil <sage@newdream.net>
Thu, 2 Feb 2012 20:49:11 +0000 (12:49 -0800)
"len" is read from network and thus needs validation.  Otherwise, given
a bogus "len" value, p+len could be an out-of-bounds pointer, which is
used in further parsing.

Signed-off-by: Xi Wang <xi.wang@gmail.com>
Signed-off-by: Sage Weil <sage@newdream.net>

No differences found
Pandora Kernel Repository