Hello, P J P, le mar. 05 juin 2018 23:38:35 +0530, a ecrit: > From: Prasad J Pandit <p...@fedoraproject.org> > > While reassembling incoming fragmented datagrams, 'm_cat' routine > extends the 'mbuf' buffer, if it has insufficient room. It computes > a wrong buffer size, which leads to overwriting adjacent heap buffer > area. Correct this size computation in m_cat. > > Reported-by: ZDI Disclosures <zdi-disclosu...@trendmicro.com> > Signed-off-by: Prasad J Pandit <p...@fedoraproject.org>
Applied to my tree with a couple documentation improvements, thanks! Samuel
