From: Jia-Ju Bai <[email protected]> Date: Sat, 30 May 2020 10:41:50 +0800
> The value adapter->rss_conf is stored in DMA memory, and it is assigned > to rssConf, so rssConf->indTableSize can be modified at anytime by > malicious hardware. Because rssConf->indTableSize is assigned to n, > buffer overflow may occur when the code "rssConf->indTable[n]" is > executed. > > To fix this possible bug, n is checked after being used. > > Signed-off-by: Jia-Ju Bai <[email protected]> Applied, thanks.
