[ROSE]: Fix minor security hole

ROSE wasn't verifying the ndigis argument of a new route resulting in a minor security hole. Signed-off-by: David S. Miller <davem@davemloft.net>

[ROSE]: Fix minor security hole
ROSE wasn't verifying the ndigis argument of a new route resulting in a minor security hole. Signed-off-by: David S. Miller <davem@davemloft.net>
82bee3ae · Ralf Bächle · David S. Miller · b1b87255 · 82bee3ae
Commit 82bee3ae authored Mar 10, 2005 by Ralf Bächle Committed by David S. Miller Mar 10, 2005
Hide whitespace changes
Inline Side-by-side

Showing with 2 additions and 1 deletion

net/rose/rose_route.c net/rose/rose_route.c +2 -1

No files found.
--- a/net/rose/rose_route.c
+++ b/net/rose/rose_route.c
@@ -727,7 +727,8 @@ int rose_rt_ioctl(unsigned int cmd, void __user *arg)
 		}
 		if (rose_route.mask > 10) /* Mask can't be more than 10 digits */
 			return -EINVAL;
-
+		if (rose_route.ndigis > 8) /* No more than 8 digipeats */
+			return -EINVAL;
 		err = rose_add_node(&rose_route, dev);
 		dev_put(dev);
 		return err;