Please sign in to comment.
net: pcnet: add check to validate receive data size(CVE-2015-7504)
In loopback mode, pcnet_receive routine appends CRC code to the receive buffer. If the data size given is same as the buffer size, the appended CRC code overwrites 4 bytes after s->buffer. Added a check to avoid that. Reported by: Qinghao Tang <email@example.com> Cc: firstname.lastname@example.org Reviewed-by: Michael S. Tsirkin <email@example.com> Signed-off-by: Prasad J Pandit <firstname.lastname@example.org> Signed-off-by: Jason Wang <email@example.com>
- Loading branch information...