ieee802154: reassembly: fix possible buffer overflow
authorAlexander Aring <alex.aring@gmail.com>
Sun, 29 Jun 2014 11:10:18 +0000 (13:10 +0200)
committerDavid S. Miller <davem@davemloft.net>
Thu, 3 Jul 2014 01:34:25 +0000 (18:34 -0700)
The max_dsize attribute in ctl_table for lowpan_frags_ns_ctl_table is
configured with integer accessing methods. This patch change the
max_dsize attribute to int to avoid a possible buffer overflow.

Signed-off-by: Alexander Aring <alex.aring@gmail.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
include/net/netns/ieee802154_6lowpan.h

index 079030c853d856d0604f5600154d57e79ab70515..e2070960bac009223c1c6caa1324d6323a478a7d 100644 (file)
@@ -16,7 +16,7 @@ struct netns_sysctl_lowpan {
 struct netns_ieee802154_lowpan {
        struct netns_sysctl_lowpan sysctl;
        struct netns_frags      frags;
-       u16                     max_dsize;
+       int                     max_dsize;
 };
 
 #endif