BugTraq
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
 
[CVE request]linux kernel xfrm migrate out-of-bound access Jul 11 2017 07:42AM
bo Zhang (zhangbo5891001 gmail com)
Issue description:

xfrm migrate is a mechanism of kernel ipsec xfrm framework.

When dealing with XFRM_MSG_MIGRATE message, xfrm_migrate func does not
check dir value of xfrm_userpolicy_id.
This will cause out of bound access to net->xfrm.policy_bydst in
policy_hash_direct func and others when dir...

[ more ]  
 

Privacy Statement
Copyright 2010, SecurityFocus