On Fri, 2016-01-29 at 11:24 -0800, Cong Wang wrote: > These two functions are called in sendmsg path, and the > 'len' is passed from user-space, so we should not allow > malicious users to OOM kernel on purpose. > > Reported-by: Dmitry Vyukov <[email protected]> > Cc: Lauro Ramos Venancio <[email protected]> > Cc: Aloisio Almeida Jr <[email protected]> > Cc: Samuel Ortiz <[email protected]> > Signed-off-by: Cong Wang <[email protected]> > ---
Note that the issue is not OOM the kernel (as the allocation is attempted even after your patch), but having a way to spill stack traces in the syslog. Acked-by: Eric Dumazet <[email protected]> Thanks!
