Re: [PATCH net] sch_cbq: validate TCA_CBQ_WRROPT to avoid crash

From: Eric Dumazet Date: Fri, 27 Sep 2019 12:57:45 -0700 > > > On 9/27/19 11:55 AM, David Miller wrote: >> From: Eric Dumazet >> Date: Thu, 26 Sep 2019 18:24:43 -0700 >> >>> syzbot reported a crash in cbq_normalize_quanta() caused >>> by an out of range cl->priority. >> ... >>> Signed-off-by

Re: [PATCH net] sch_cbq: validate TCA_CBQ_WRROPT to avoid crash

On 9/27/19 11:55 AM, David Miller wrote: > From: Eric Dumazet > Date: Thu, 26 Sep 2019 18:24:43 -0700 > >> syzbot reported a crash in cbq_normalize_quanta() caused >> by an out of range cl->priority. > ... >> Signed-off-by: Eric Dumazet >> Reported-by: syzbot > > Fixes: tag? -stable? >

Re: [PATCH net] sch_cbq: validate TCA_CBQ_WRROPT to avoid crash

From: Eric Dumazet Date: Thu, 26 Sep 2019 18:24:43 -0700 > syzbot reported a crash in cbq_normalize_quanta() caused > by an out of range cl->priority. ... > Signed-off-by: Eric Dumazet > Reported-by: syzbot Fixes: tag? -stable?

[PATCH net] sch_cbq: validate TCA_CBQ_WRROPT to avoid crash

syzbot reported a crash in cbq_normalize_quanta() caused by an out of range cl->priority. iproute2 enforces this check, but malicious users do not. kasan: CONFIG_KASAN_INLINE enabled kasan: GPF could be caused by NULL-ptr deref or user memory access general protection fault: [#1] SMP KASAN P