Google Git
Sign in
kernel / pub / scm / linux / kernel / git / horms / ipvs-next / 59a1c9b5b74e95eea73a6f85c574bd63031a0bcf
commit59a1c9b5b74e95eea73a6f85c574bd63031a0bcf[log] [tgz]
authorRamon de Carvalho Valle <ramon@risesecurity.org>Tue Jul 28 13:58:22 2009 -0500
committerGreg Kroah-Hartman <gregkh@suse.de>Thu Jul 30 14:40:36 2009 -0700
tree43d914681332cc52a98813741d37735210376252
parent4df9205138cd0c610b52eefe1ecdafdaf65cfb12 [diff]
eCryptfs: parse_tag_3_packet check tag 3 packet encrypted key size (CVE-2009-2407)

commit f151cd2c54ddc7714e2f740681350476cda03a28 upstream.

The parse_tag_3_packet function does not check if the tag 3 packet contains a
encrypted key size larger than ECRYPTFS_MAX_ENCRYPTED_KEY_BYTES.

Signed-off-by: Ramon de Carvalho Valle <ramon@risesecurity.org>
[tyhicks@linux.vnet.ibm.com: Added printk newline and changed goto to out_free]
Signed-off-by: Tyler Hicks <tyhicks@linux.vnet.ibm.com>
Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>
Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>
1 file changed
tree: 43d914681332cc52a98813741d37735210376252
  1. arch/
  2. block/
  3. crypto/
  4. Documentation/
  5. drivers/
  6. firmware/
  7. fs/
  8. include/
  9. init/
  10. ipc/
  11. kernel/
  12. lib/
  13. mm/
  14. net/
  15. samples/
  16. scripts/
  17. security/
  18. sound/
  19. usr/
  20. virt/
  21. .gitignore
  22. .mailmap
  23. COPYING
  24. CREDITS
  25. Kbuild
  26. MAINTAINERS
  27. Makefile
  28. README
  29. REPORTING-BUGS