From: Eric Dumazet <eric.dumazet@xxxxxxxxx> Date: Wed, 02 Nov 2016 19:00:40 -0700 > From: Eric Dumazet <edumazet@xxxxxxxxxx> > > dccp_v4_err() does not use pskb_may_pull() and might access garbage. > > We only need 4 bytes at the beginning of the DCCP header, like TCP, > so the 8 bytes pulled in icmp_socket_deliver() are more than enough. > > This patch might allow to process more ICMP messages, as some routers > are still limiting the size of reflected bytes to 28 (RFC 792), instead > of extended lengths (RFC 1812 4.3.2.3) > > Signed-off-by: Eric Dumazet <edumazet@xxxxxxxxxx> Applied and queued up for -stable. -- To unsubscribe from this list: send the line "unsubscribe dccp" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
