af_iucv: Validate socket address length in iucv_sock_bind() · 626a83d5d5 - evie/android_kernel_oneplus_msm8998 - Gay Catgirls Forgejo: gay catgirls having sex

evie/android_kernel_oneplus_msm8998

af_iucv: Validate socket address length in iucv_sock_bind()

[ Upstream commit 52a82e23b9f2a9e1d429c5207f8575784290d008 ]

Signed-off-by: Ursula Braun <ursula.braun@de.ibm.com>
Reported-by: Dmitry Vyukov <dvyukov@google.com>
Reviewed-by: Evgeny Cherkashin <Eugene.Crosser@ru.ibm.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>

This commit is contained in:

Ursula Braun

2016-01-19 10:41:33 +01:00

• committed by

Greg Kroah-Hartman

parent 2134d97aa3

commit 626a83d5d5

1 changed files with 3 additions and 0 deletions

									
										3

net/iucv/af_iucv.c
									
										View file
										
				@ -708,6 +708,9 @@ static int iucv_sock_bind(struct socket *sock, struct sockaddr *addr,

					if (!addr || addr->sa_family != AF_IUCV)

						return -EINVAL;

					if (addr_len < sizeof(struct sockaddr_iucv))

						return -EINVAL;

					lock_sock(sk);

					if (sk->sk_state != IUCV_OPEN) {

						err = -EBADFD;