igmp: limit igmpv3_newpack() packet size to IP_MAX_MTU (!3186) · Merge requests · Red Hat / centos-stream / src / kernel / centos-stream-9

Hangbin Liu requested to merge liuhangbin/centos-stream-9:jira_RHEL-10448_igmpv3 into main Oct 09, 2023

JIRA: https://issues.redhat.com/browse/RHEL-10448 JIRA: https://issues.redhat.com/browse/RHEL-10449 Upstream Status: net.git commit c3b704d4a4a2 CVE: CVE-2023-42752

The commit 915d975b2ffa ("net: deal with integer overflows in kmalloc_reserve()") is not backported as we don't have 12d6c1d3a2ad ("skbuff: Proactively round up to kmalloc bucket size") on RHEL9.

Signed-off-by: Hangbin Liu haliu@redhat.com

Edited Oct 12, 2023 by Hangbin Liu

igmp: limit igmpv3_newpack() packet size to IP_MAX_MTU

Merge request reports