diff options
| author | Dan Carpenter <[email protected]> | 2016-06-07 15:04:16 +0300 |
|---|---|---|
| committer | David S. Miller <[email protected]> | 2016-06-08 00:33:25 -0700 |
| commit | 01e517f16e38fc2345d4d555a7764b5f3f35af84 (patch) | |
| tree | 6b200ac9cb1a5f75e3f9e53052e32d69d5f4191f /tools/perf/scripts/python/net_dropmonitor.py | |
| parent | f02ea21548171fa3dacc11fbca358a0fc863bb51 (diff) | |
qed: potential overflow in qed_cxt_src_t2_alloc()
In the current code "ent_per_page" could be more than "conn_num" making
"conn_num" negative after the subtraction. In the next iteration
through the loop then the negative is treated as a very high positive
meaning we don't put a limit on "ent_num". It could lead to memory
corruption.
Fixes: dbb799c39717 ('qed: Initialize hardware for new protocols')
Signed-off-by: Dan Carpenter <[email protected]>
Acked-by: Yuval Mintz <[email protected]>
Signed-off-by: David S. Miller <[email protected]>
Diffstat (limited to 'tools/perf/scripts/python/net_dropmonitor.py')
0 files changed, 0 insertions, 0 deletions