3 matches found
kernel: net: Heap overflow in skb_to_sgvec in macsec.c
A flaw was found in the way Linux kernel allocates heap memory to build the scattergather list from a fragment listskbshinfoskb-fraglist in the socket bufferskbbuff. The heap overflow occurred if 'MAXSKBFRAGS + 1' parameter and 'NETIFFFRAGLIST' feature are both used together. A remote user or...
CVE-2017-7477
Heap-based buffer overflow in drivers/net/macsec.c in the MACsec module in the Linux kernel through 4.10.12 allows attackers to cause a denial of service or possibly have unspecified other impact by leveraging the use of a MAXSKBFRAGS+1 size in conjunction with the NETIFFFRAGLIST feature, leading...
CVE-2017-7477
Heap-based buffer overflow in drivers/net/macsec.c in the MACsec module in the Linux kernel through 4.10.12 allows attackers to cause a denial of service or possibly have unspecified other impact by leveraging the use of a MAXSKBFRAGS+1 size in conjunction with the NETIFFFRAGLIST feature, leading...