linux-toradex.git - Linux kernel for Apalis and Colibri modules

diff options

author	Vladis Dronov <vdronov@redhat.com>	2017-09-13 00:21:21 +0200
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>	2017-10-05 09:44:01 +0200
commit	c820441a7a52e3626aede8df94069a50a9e4efdb (patch)
tree	344b5dd0dfccf255f687774f6387adf11c1efdb6 /block
parent	f3e2e7f0b4d77d8b26a2bd5525c35d9a16952517 (diff)

nl80211: check for the required netlink attributes presence

commit e785fa0a164aa11001cba931367c7f94ffaff888 upstream. nl80211_set_rekey_data() does not check if the required attributes NL80211_REKEY_DATA_{REPLAY_CTR,KEK,KCK} are present when processing NL80211_CMD_SET_REKEY_OFFLOAD request. This request can be issued by users with CAP_NET_ADMIN privilege and may result in NULL dereference and a system crash. Add a check for the required attributes presence. This patch is based on the patch by bo Zhang. This fixes CVE-2017-12153. References: https://bugzilla.redhat.com/show_bug.cgi?id=1491046 Fixes: e5497d766ad ("cfg80211/nl80211: support GTK rekey offload") Reported-by: bo Zhang <zhangbo5891001@gmail.com> Signed-off-by: Vladis Dronov <vdronov@redhat.com> Signed-off-by: Johannes Berg <johannes.berg@intel.com> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>

Diffstat (limited to 'block')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: