mirror of
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
synced 2024-09-12 21:57:43 +00:00
5d6ba607d6
The vdpa_nl_policy structure is used to validate the nlattr when parsing
the incoming nlmsg. It will ensure the attribute being described produces
a valid nlattr pointer in info->attrs before entering into each handler
in vdpa_nl_ops.
That is to say, the missing part in vdpa_nl_policy may lead to illegal
nlattr after parsing, which could lead to OOB read just like CVE-2023-3773.
This patch adds the missing nla_policy for vdpa max vqp attr to avoid
such bugs.
Fixes:
|
||
---|---|---|
.. | ||
alibaba | ||
ifcvf | ||
mlx5 | ||
pds | ||
solidrun | ||
vdpa_sim | ||
vdpa_user | ||
virtio_pci | ||
Kconfig | ||
Makefile | ||
vdpa.c |