smb: client: fix OOB in receive_encrypted_standard() (b03c8099) · Commits · CodeLinaro / la / kernel / msm-4.4 · GitLab

Snippets Groups Projects

Commit b03c8099 authored 1 year ago by Paulo Alcantara Committed by Greg Kroah-Hartman 1 year ago

smb: client: fix OOB in receive_encrypted_standard()


[ Upstream commit eec04ea1 ]

Fix potential OOB in receive_encrypted_standard() if server returned a
large shdr->NextCommand that would end up writing off the end of
@next_buffer.

Fixes: b24df3e3 ("cifs: update receive_encrypted_standard to handle compounded responses")
Cc: stable@vger.kernel.org
Reported-by: Robert Morris <rtm@csail.mit.edu>
Signed-off-by: Paulo Alcantara (SUSE) <pc@manguebit.com>
Signed-off-by: Steve French <stfrench@microsoft.com>
[Guru: receive_encrypted_standard() is present in file smb2ops.c,
smb2ops.c file location is changed, modified patch accordingly.]
Signed-off-by: Guruswamy Basavaiah <guruswamy.basavaiah@broadcom.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>

parent 3fa31e7a

No related merge requests found

Hide whitespace changes

Inline Side-by-side

Showing with 8 additions and 6 deletions

CodeLinaro @codelinaro
mentioned in commit a39945bc
· 6 months ago

mentioned in commit a39945bc

mentioned in commit a39945bca5da88688e546025d0f1b14b616c03ba

Toggle commit list
CodeLinaro @codelinaro
mentioned in commit a39945bc
· 6 months ago

mentioned in commit a39945bc

mentioned in commit a39945bca5da88688e546025d0f1b14b616c03ba

Toggle commit list
CodeLinaro @codelinaro
mentioned in commit b07354bd
· 6 months ago

mentioned in commit b07354bd

mentioned in commit b07354bd326c0a744f5b7b32389183594cd181e8

Toggle commit list

Please register or to comment