Re: [PATCH net v4] sctp: fix a potential OOB access in sctp_sched_set_sched()

From: Marcelo Ricardo Leitner
Date: Wed May 03 2023 - 09:44:22 EST

Next message: Takashi Iwai: "Re: linux-6.4 alsa sound broken"
Previous message: Michal Simek: "[PATCH] dt-bindings: usb: Add binding for Microchip usb5744 hub controller"
In reply to: Gavrilov Ilia: "[PATCH net v4] sctp: fix a potential OOB access in sctp_sched_set_sched()"
Next in thread: Jakub Kicinski: "Re: [PATCH net v4] sctp: fix a potential OOB access in sctp_sched_set_sched()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, May 03, 2023 at 01:37:59PM +0000, Gavrilov Ilia wrote:
> The 'sched' index value must be checked before accessing an element
> of the 'sctp_sched_ops' array. Otherwise, it can lead to OOB access.
>
> Note that it's harmless since the 'sched' parameter is checked before
> calling 'sctp_sched_set_sched'.
>
> Found by InfoTeCS on behalf of Linux Verification Center
> (linuxtesting.org) with SVACE.
>
> Reviewed-by: Xin Long <lucien.xin@xxxxxxxxx>
> Reviewed-by: Simon Horman <simon.horman@xxxxxxxxxxxx>
> Signed-off-by: Ilia.Gavrilov <Ilia.Gavrilov@xxxxxxxxxxx>

Acked-by: Marcelo Ricardo Leitner <marcelo.leitner@xxxxxxxxx>

Thx!

Next message: Takashi Iwai: "Re: linux-6.4 alsa sound broken"
Previous message: Michal Simek: "[PATCH] dt-bindings: usb: Add binding for Microchip usb5744 hub controller"
In reply to: Gavrilov Ilia: "[PATCH net v4] sctp: fix a potential OOB access in sctp_sched_set_sched()"
Next in thread: Jakub Kicinski: "Re: [PATCH net v4] sctp: fix a potential OOB access in sctp_sched_set_sched()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]