From: Phil Blundell <philb@gnu.org>
Date: Wed, 24 Nov 2010 19:51:47 +0000 (-0800)
Subject: econet: fix CVE-2010-3848
X-Git-Tag: v2.6.37-rc4~4^2~17
X-Git-Url: http://git.openpandora.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=a27e13d370415add3487949c60810e36069a23a6;p=pandora-kernel.git

econet: fix CVE-2010-3848

Don't declare variable sized array of iovecs on the stack since this
could cause stack overflow if msg->msgiovlen is large.  Instead, coalesce
the user-supplied data into a new buffer and use a single iovec for it.

Signed-off-by: Phil Blundell <philb@gnu.org>
Signed-off-by: David S. Miller <davem@davemloft.net>
---

Reading git-diff-tree failed