subject:"BUG\: algif_hash crash with extra recv\(\) in 4.9\-rc5"

Re: BUG: algif_hash crash with extra recv() in 4.9-rc5

2016-11-17 Thread Laura Abbott

On 11/17/2016 06:07 AM, Herbert Xu wrote: > On Wed, Nov 16, 2016 at 11:17:33AM -0800, Mat Martineau wrote: >> >> Herbert - >> >> Following commit 493b2ed3f7603a15ff738553384d5a4510ffeb95, there is a NULL >> dereference crash in algif_hash when recv() is called twice like this: >> >> send(sk, data,

Re: BUG: algif_hash crash with extra recv() in 4.9-rc5

2016-11-17 Thread Herbert Xu

On Wed, Nov 16, 2016 at 11:17:33AM -0800, Mat Martineau wrote: > > Herbert - > > Following commit 493b2ed3f7603a15ff738553384d5a4510ffeb95, there is a NULL > dereference crash in algif_hash when recv() is called twice like this: > > send(sk, data, len, MSG_MORE); > recv(sk, hash1, len, 0); > rec

Re: BUG: algif_hash crash with extra recv() in 4.9-rc5

2016-11-17 Thread Mat Martineau

Herbert, On Thu, 17 Nov 2016, Herbert Xu wrote: On Wed, Nov 16, 2016 at 11:17:33AM -0800, Mat Martineau wrote: Herbert - Following commit 493b2ed3f7603a15ff738553384d5a4510ffeb95, there is a NULL dereference crash in algif_hash when recv() is called twice like this: send(sk, data, len, MSG

BUG: algif_hash crash with extra recv() in 4.9-rc5

2016-11-16 Thread Mat Martineau

Herbert - Following commit 493b2ed3f7603a15ff738553384d5a4510ffeb95, there is a NULL dereference crash in algif_hash when recv() is called twice like this: send(sk, data, len, MSG_MORE); recv(sk, hash1, len, 0); recv(sk, hash2, len, 0); In 4.8 and earlier, the two recvs return identical data

Re: BUG: algif_hash crash with extra recv() in 4.9-rc5

Re: BUG: algif_hash crash with extra recv() in 4.9-rc5

Re: BUG: algif_hash crash with extra recv() in 4.9-rc5

BUG: algif_hash crash with extra recv() in 4.9-rc5

4 matches

Site Navigation

Mail list logo

Footer information