Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
mpls: Properly validate RTA_VIA payload length
If the nla length is less than 2 then the nla data could be accessed beyond the accessible bounds. So ensure that the nla is big enough to at least read the via_family before doing so. Replace magic value of 2. Fixes: 03c0566 ("mpls: Basic support for adding and removing routes") Cc: Eric W. Biederman <[email protected]> Signed-off-by: Robert Shearman <[email protected]> Acked-by: "Eric W. Biederman" <[email protected]> Signed-off-by: David S. Miller <[email protected]>
- Loading branch information