android_kernel_samsung_a7y1.../security/smack
Jia-Ju Bai 43aad77c9d security: smack: Fix possible null-pointer dereferences in smack_socket_sock_rcv_skb()
[ Upstream commit 3f4287e7d98a2954f20bf96c567fdffcd2b63eb9 ]

In smack_socket_sock_rcv_skb(), there is an if statement
on line 3920 to check whether skb is NULL:
    if (skb && skb->secmark != 0)

This check indicates skb can be NULL in some cases.

But on lines 3931 and 3932, skb is used:
    ad.a.u.net->netif = skb->skb_iif;
    ipv6_skb_to_auditdata(skb, &ad.a, NULL);

Thus, possible null-pointer dereferences may occur when skb is NULL.

To fix these possible bugs, an if statement is added to check skb.

These bugs are found by a static analysis tool STCheck written by us.

Signed-off-by: Jia-Ju Bai <baijiaju1990@gmail.com>
Signed-off-by: Casey Schaufler <casey@schaufler-ca.com>
Signed-off-by: Sasha Levin <sashal@kernel.org>
2020-04-07 07:43:44 +02:00
..
Kconfig A750FXXU4CTBC 2020-03-27 21:51:54 +05:30
Makefile A750FXXU4CTBC 2020-03-27 21:51:54 +05:30
smack_access.c A750FXXU4CTBC 2020-03-27 21:51:54 +05:30
smack_lsm.c security: smack: Fix possible null-pointer dereferences in smack_socket_sock_rcv_skb() 2020-04-07 07:43:44 +02:00
smack_netfilter.c A750FXXU4CTBC 2020-03-27 21:51:54 +05:30
smack.h A750FXXU4CTBC 2020-03-27 21:51:54 +05:30
smackfs.c A750FXXU4CTBC 2020-03-27 21:51:54 +05:30