Please sign in to comment.
net: pcnet: add check to validate receive data size(CVE-2015-7504)
In loopback mode, pcnet_receive routine appends CRC code to the receive buffer. If the data size given is same as the buffer size, the appended CRC code overwrites 4 bytes after s->buffer. Added a check to avoid that. Reported by: Qinghao Tang <firstname.lastname@example.org> Cc: email@example.com Reviewed-by: Michael S. Tsirkin <firstname.lastname@example.org> Signed-off-by: Prasad J Pandit <email@example.com> Signed-off-by: Jason Wang <firstname.lastname@example.org>
- Loading branch information