[T/X/A][SRU][PATCH 0/1] Fix for CVE-2018-5332
Po-Hsu Lin
po-hsu.lin at canonical.com
Tue Jan 23 07:54:17 UTC 2018
>From our CVE tracker, Trusty, Xenial, Artful and Bionic are all marked as
needed, but it's already in Bionic (8be26a74).
This patch can be cherry-picked for the rest of them.
It will handle the exception when args->nr_local = 0, which could make
the size calculated from rds_rm_size() in net/rds/send.c become 0 and
consequently indeuce a heap OOB issue.
Mohamed Ghannam (1):
RDS: Heap OOB write in rds_message_alloc_sgs()
net/rds/rdma.c | 3 +++
1 file changed, 3 insertions(+)
--
2.7.4
More information about the kernel-team
mailing list