Re: [PATCH v2] Fix CVE-2022-30767 (old CVE-2019-14196)

On Wed, May 18, 2022 at 04:30:08PM +, Andrea zi0Black Cappa wrote: > This patch mitigates the vulnerability identified via CVE-2019-14196. > The previous patch was bypassed/ineffective, and now the vulnerability is > identified via CVE-2022-30767. The patch removes the sanity check introduced

[PATCH v2] Fix CVE-2022-30767 (old CVE-2019-14196)

This patch mitigates the vulnerability identified via CVE-2019-14196. The previous patch was bypassed/ineffective, and now the vulnerability is identified via CVE-2022-30767. The patch removes the sanity check introduced to mitigate CVE-2019-14196 since it's ineffective. filefh3_length is changed