git.openpandora.org
/
pandora-kernel.git
/ commitdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
| commitdiff |
tree
raw
|
patch
| inline |
side by side
(parent:
065a68f
)
ceph: fix bounds check in ceph_decode_need and ceph_encode_need
author
Xi Wang
<xi.wang@gmail.com>
Fri, 20 Apr 2012 20:49:44 +0000
(15:49 -0500)
committer
Alex Elder
<elder@dreamhost.com>
Mon, 14 May 2012 17:12:27 +0000
(12:12 -0500)
Given a large n, the bounds check (*p + n > end) can be bypassed due to
pointer wraparound. A safer check is (n > end - *p).
[elder@dreamhost.com: inverted test and renamed ceph_has_room()]
Signed-off-by: Xi Wang <xi.wang@gmail.com>
Reviewed-by: Alex Elder <elder@dreamhost.com>
No differences found
git.openpandora.org / pandora-kernel.git / commitdiff