From: Alexander Aring <alex.aring@gmail.com>
Date: Sun, 29 Jun 2014 11:10:18 +0000 (+0200)
Subject: ieee802154: reassembly: fix possible buffer overflow
X-Git-Url: http://drtracing.org/?a=commitdiff_plain;h=48bc03433cfdcac7a3bbb233d5c9f95297a0f5ab;p=deliverable%2Flinux.git

ieee802154: reassembly: fix possible buffer overflow

The max_dsize attribute in ctl_table for lowpan_frags_ns_ctl_table is
configured with integer accessing methods. This patch change the
max_dsize attribute to int to avoid a possible buffer overflow.

Signed-off-by: Alexander Aring <alex.aring@gmail.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
---

diff --git a/include/net/netns/ieee802154_6lowpan.h b/include/net/netns/ieee802154_6lowpan.h
index 079030c853d8..e2070960bac0 100644
--- a/include/net/netns/ieee802154_6lowpan.h
+++ b/include/net/netns/ieee802154_6lowpan.h
@@ -16,7 +16,7 @@ struct netns_sysctl_lowpan {
 struct netns_ieee802154_lowpan {
 	struct netns_sysctl_lowpan sysctl;
 	struct netns_frags	frags;
-	u16			max_dsize;
+	int			max_dsize;
 };
 
 #endif