[Zesty][SRU][PATCH 0/1] Fix for CVE-2017-7558
Po-Hsu Lin
po-hsu.lin at canonical.com
Thu Jan 11 07:10:05 UTC 2018
>From our CVE tracker, only Zesty needs this patch.
This patch fixes an out-of-bounds issue for memory storing sockaddr information
by using the size of the source struct directly.
Stefano Brivio (1):
sctp: Avoid out-of-bounds reads from address storage
net/sctp/sctp_diag.c | 7 +++++--
net/sctp/socket.c | 3 +--
2 files changed, 6 insertions(+), 4 deletions(-)
--
2.7.4
More information about the kernel-team
mailing list