diff options
| author | Pavel Skripkin <paskripkin@gmail.com> | 2021-06-25 13:23:54 +0300 | 
|---|---|---|
| committer | Steffen Klassert <steffen.klassert@secunet.com> | 2021-06-29 12:16:08 +0200 | 
| commit | 7c1a80e80cde008f271bae630d28cf684351e807 (patch) | |
| tree | 5eb085441dc88a5252c433dcbd78b50ac2ca26aa /scripts/gdb/linux/clk.py | |
| parent | a118ff661889ecee3ca90f8125bad8fb5bbc07d5 (diff) | |
net: xfrm: fix memory leak in xfrm_user_rcv_msg
Syzbot reported memory leak in xfrm_user_rcv_msg(). The
problem was is non-freed skb's frag_list.
In skb_release_all() skb_release_data() will be called only
in case of skb->head != NULL, but netlink_skb_destructor()
sets head to NULL. So, allocated frag_list skb should be
freed manualy, since consume_skb() won't take care of it
Fixes: 5106f4a8acff ("xfrm/compat: Add 32=>64-bit messages translator")
Reported-and-tested-by: syzbot+fb347cf82c73a90efcca@syzkaller.appspotmail.com
Signed-off-by: Pavel Skripkin <paskripkin@gmail.com>
Signed-off-by: Steffen Klassert <steffen.klassert@secunet.com>
Diffstat (limited to 'scripts/gdb/linux/clk.py')
0 files changed, 0 insertions, 0 deletions
