u-boot-megous/net/net.c at 87d3fac2e99a8ee7c15abf4f4b378d747e23833c

mirror of https://xff.cz/git/u-boot/ synced 2025-10-31 10:26:10 +01:00

Files

liucheng (G) fe7288069d CVE: net: fix unbounded memcpy of UDP packet

This patch adds a check to udp_len to fix unbounded memcpy for
CVE-2019-14192, CVE-2019-14193 and CVE-2019-14199.

Signed-off-by: Cheng Liu <liucheng32@huawei.com>
Reviewed-by: Simon Goldschmidt <simon.k.r.goldschmidt@gmail.com>
Reported-by: Fermín Serna <fermin@semmle.com>
Acked-by: Joe Hershberger <joe.hershberger@ni.com>

2019-09-04 11:37:19 -05:00

37 KiB

Raw Blame History

View Raw

37 KiB Raw Blame History

37 KiB

Raw Blame History