CyberLeo.Net >> Repos - FreeBSD/FreeBSD.git/commit

]> CyberLeo.Net >> Repos - FreeBSD/FreeBSD.git/commit - sys/netinet/sctp_pcb.c

projects / FreeBSD / FreeBSD.git / commit

author	Michael Tuexen <tuexen@FreeBSD.org>
	Tue, 29 Sep 2020 09:36:06 +0000 (09:36 +0000)
committer	Michael Tuexen <tuexen@FreeBSD.org>
	Tue, 29 Sep 2020 09:36:06 +0000 (09:36 +0000)
commit	b15f54111339776cf6a0703e993017b2763c321f
tree	af911c7cf1849e12d01d61a02ba8cbdb6c1c5108	tree \| snapshot
parent	822967e7e5b24d5fa980f69cab7b2982e1b6fa42	commit \| diff

Improve the input validation and processing of cookies.
This avoids setting the association in an inconsistent
state, which could result in a use-after-free situation.
This can be triggered by a malicious peer, if the peer
can modify the cookie without the local endpoint recognizing
it.
Thanks to Ned Williamson for reporting the issue.

MFC after: 3 days

sys/netinet/sctp_input.c		diff \| blob \| history
sys/netinet/sctp_pcb.c		diff \| blob \| history

Unnamed repository; edit this file 'description' to name the repository.

RSS Atom