Dennis Dalessandro a2cb0eb8a6 IB/ipath: Fix potential buffer overrun in sending diag packet routine ... Guard against a potential buffer overrun. The size to read from the user is passed in, and due to the padding that needs to be taken into account, as well as the place holder for the ICRC it is possible to overflow the 32bit value which would cause more data to be copied from user space than is allocated in the buffer. Cc: <stable@vger.kernel.org> Reported-by: Nico Golde <nico@ngolde.de> Reported-by: Fabian Yamaguchi <fabs@goesec.de> Reviewed-by: Mike Marciniszyn <mike.marciniszyn@intel.com> Signed-off-by: Dennis Dalessandro <dennis.dalessandro@intel.com> Signed-off-by: Roland Dreier <roland@purestorage.com>		2014-03-17 16:16:51 -07:00
..
amso1100	RDMA/amso1100: Fix error return code	2014-02-12 11:11:46 -08:00
cxgb3	RDMA/cma: Add IPv6 support for iWARP	2013-08-12 12:32:31 -07:00
cxgb4	RDMA/cxgb4: Add missing neigh_release in LE-Workaround path	2014-02-13 14:46:40 -08:00
ehca	IB/core: Ethernet L2 attributes in verbs/cm structures	2014-01-14 14:20:54 -08:00
ipath	IB/ipath: Fix potential buffer overrun in sending diag packet routine	2014-03-17 16:16:51 -07:00
mlx4	Merge branches 'cma', 'cxgb4', 'iser', 'misc', 'mlx4', 'mlx5', 'nes', 'ocrdma', 'qib' and 'usnic' into for-next	2014-02-14 09:49:12 -08:00
mlx5	IB/mlx5: Remove dependency on X86	2014-02-13 20:48:02 -08:00
mthca	IB/core: Ethernet L2 attributes in verbs/cm structures	2014-01-14 14:20:54 -08:00
nes	RDMA/nes: Fix error return code	2014-02-12 11:11:09 -08:00
ocrdma	Merge branches 'cma', 'cxgb4', 'iser', 'misc', 'mlx4', 'mlx5', 'nes', 'ocrdma', 'qib' and 'usnic' into for-next	2014-02-14 09:49:12 -08:00
qib	IB/qib: Fix potential buffer overrun in sending diag packet routine	2014-03-17 16:16:51 -07:00
usnic	IB/usnic: Fix smatch endianness error	2014-02-14 09:47:29 -08:00