[Patch] Possible dereference in net/core/rtnetlink.c

From: Eric Sesterhenn
Date: Tue Sep 26 2006 - 06:51:25 EST

Next message: Alan Cox: "Re: [PATCH] restore libata build on frv"
Previous message: Andi Kleen: "x86/x86-64 merge for 2.6.19"
Next in thread: David Miller: "Re: [Patch] Possible dereference in net/core/rtnetlink.c"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

hi,

another possible dereference spotted by coverity (#cid 1390).
if the nlmsg_parse() call fails, we goto errout, where we call
dev_put(), with dev still initialized to NULL.

Signed-off-by: Eric Sesterhenn <snakebyte@xxxxxx>

--- linux-2.6.18-git5/net/core/rtnetlink.c.orig 2006-09-26 12:48:03.000000000 +0200
+++ linux-2.6.18-git5/net/core/rtnetlink.c 2006-09-26 12:48:28.000000000 +0200
@@ -562,7 +562,7 @@ static int rtnl_getlink(struct sk_buff *

err = nlmsg_parse(nlh, sizeof(*ifm), tb, IFLA_MAX, ifla_policy);
if (err < 0)
- goto errout;
+ return err;

ifm = nlmsg_data(nlh);
if (ifm->ifi_index >= 0) {

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Alan Cox: "Re: [PATCH] restore libata build on frv"
Previous message: Andi Kleen: "x86/x86-64 merge for 2.6.19"
Next in thread: David Miller: "Re: [Patch] Possible dereference in net/core/rtnetlink.c"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]