matthias
/
iproute2
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
iproute2/include
History
Olivier Fourdan 7f71c0cae2 ip maddr show” on an infiniband address causes a stack corruption 
“ip maddr show” on an infiniband address causes a stack corruption
because the length of the address for Infiniband (20 bytes, as
described in kernel doc Documentation/infiniband/ipoib.txt) does not
fit on the 16 bytes of the field in which it gets stored.

The proposed patch increases the size of the hardware address from 4
__u32 to 8 and also adds a check to avoid overriding the available
size while parsing the hardware address.

This bug affects current upstream code AFAICT.

Hope this helps,
Cheers,
Olivier.

“ip maddr show ib0” causes a stack corruption because the length of the address
for Infiniband (20 see kernel doc Documentation/infiniband/ipoib.txt) does not
fit on the 16 bytes of the field in which it gets stored.

The proposed patch increases the size of the hardware address from 4 u32 to 8
and adds a check to avoid overriding the available size while parsing the
hardware address.
 		2009-01-06 18:56:03 -08:00
..
libiptc iproute2: Support IFF_LOWER_UP and IFF_DORMANT 2007-06-19 16:40:40 -07:00
linux Update headers to 2.6.28 2009-01-06 15:03:26 -08:00
netinet add include/netinet/tcp.h 2007-12-31 12:56:08 -08:00
SNAPSHOT.h Update snapshot 2008-07-25 13:46:07 -07:00
ip6tables.h Remove trailing whitespace 2006-12-05 10:10:22 -08:00
iptables.h Remove trailing whitespace 2006-12-05 10:10:22 -08:00
iptables_common.h fix build warnings 2007-06-20 10:55:18 -07:00
libnetlink.h fix problem caused by rtnl_send checks 2008-01-31 21:38:58 -08:00
ll_map.h Remove trailing whitespace 2006-12-05 10:10:22 -08:00
rt_names.h Add support for larger number of routing tables 2006-08-10 16:12:07 -07:00
rtm_map.h (Logical change 1.3) 2004-04-15 20:56:59 +00:00
utils.h ip maddr show” on an infiniband address causes a stack corruption 2009-01-06 18:56:03 -08:00