OpenE2K/linux
6
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
ecfbcb8580
linux/net
History
Johannes Berg 53ada35f2e mac80211: bail out if cipher schemes are invalid 
[ Upstream commit db878e27a98106a70315d264cc92230d84009e72 ]

If any of the cipher schemes specified by the driver are invalid, bail
out and fail the registration rather than just warning.  Otherwise, we
might later crash when we try to use the invalid cipher scheme, e.g.
if the hdr_len is (significantly) less than the pn_offs + pn_len, we'd
have an out-of-bounds access in RX validation.

Fixes: 2475b1cc0d ("mac80211: add generic cipher scheme support")
Link: https://lore.kernel.org/r/20210408143149.38a3a13a1b19.I6b7f5790fa0958ed8049cf02ac2a535c61e9bc96@changeid
Signed-off-by: Johannes Berg <johannes.berg@intel.com>
Signed-off-by: Sasha Levin <sashal@kernel.org>
2021-05-14 09:44:28 +02:00
..
6lowpan
9p
802
8021q
appletalk appletalk: Fix skb allocation size in loopback case 2021-04-07 14:47:41 +02:00
atm
ax25
batman-adv batman-adv: initialize "struct batadv_tvlv_tt_vlan_data"->reserved field 2021-04-14 08:24:11 +02:00
bluetooth bluetooth: eliminate the potential race condition when removing the HCI controller 2021-05-14 09:44:10 +02:00
bpf
bpfilter
bridge netfilter: bridge: add pre_exit hooks for ebtable unregistration 2021-04-21 12:56:16 +02:00
caif
can can: bcm/raw: fix msg_namelen values depending on CAN_REQUIRED_SIZE 2021-04-14 08:24:14 +02:00
ceph
core gro: ensure frag0 meets IP header alignment 2021-04-21 12:56:17 +02:00
dcb
dccp ipv6: weaken the v4mapped source check 2021-04-07 14:47:38 +02:00
decnet
dns_resolver
dsa net: dsa: tag_mtk: fix 802.1ad VLAN egress 2021-03-20 10:39:47 +01:00
ethernet
hsr hsr: use netdev_err() instead of WARN_ONCE() 2021-05-14 09:44:10 +02:00
ieee802154 net: ieee802154: forbid monitor for add llsec seclevel 2021-04-21 12:56:15 +02:00
ife
ipv4 inet: use bigger hash table for IP ID generation 2021-05-14 09:44:26 +02:00
ipv6 net: ip6_tunnel: Unregister catch-all devices 2021-04-21 12:56:17 +02:00
iucv
kcm
key
l2tp
l3mdev
lapb
llc
mac80211 mac80211: bail out if cipher schemes are invalid 2021-05-14 09:44:28 +02:00
mac802154 net: mac802154: Fix general protection fault 2021-04-14 08:24:18 +02:00
mpls
ncsi net/ncsi: Avoid channel_monitor hrtimer deadlock 2021-04-14 08:24:15 +02:00
netfilter netfilter: nft_limit: avoid possible divide error in nft_limit_init 2021-04-21 12:56:17 +02:00
netlabel
netlink
netrom
nfc net/nfc: fix use-after-free llcp_sock_bind/connect 2021-05-14 09:44:10 +02:00
nsh
openvswitch openvswitch: fix stack OOB read while fragmenting IPv4 packets 2021-05-11 14:04:14 +02:00
packet
phonet
psample
qrtr net: qrtr: fix a kernel-infoleak in qrtr_recvmsg() 2021-03-30 14:35:29 +02:00
rds net/rds: Fix a use after free in rds_message_map_pages 2021-04-14 08:24:15 +02:00
rfkill
rose
rxrpc
sched net: sched: bump refcount for new action in ACT replace mode 2021-04-14 08:24:18 +02:00
sctp net/sctp: fix race condition in sctp_destroy_sock 2021-04-21 12:56:12 +02:00
smc
strparser
sunrpc rpc: fix NULL dereference on kmalloc failure 2021-04-07 14:47:38 +02:00
switchdev
tipc net:tipc: Fix a double free in tipc_sk_mcast_rcv 2021-04-14 08:24:15 +02:00
tls
unix
vmw_vsock selinux: vsock: Set SID for socket returned by accept() 2021-04-07 14:47:37 +02:00
wimax
wireless cfg80211: scan: drop entry from hidden_list on overflow 2021-05-14 09:44:13 +02:00
x25
xdp
xfrm net: xfrm: Localize sequence counter per network namespace 2021-04-14 08:24:13 +02:00
compat.c
Kconfig
Makefile
socket.c
sysctl_net.c