On Mon, Mar 02, 2020 at 07:21:12PM +0100, gregkh@linuxfoundation.org wrote:
The patch below does not apply to the 4.19-stable tree. If someone wants it applied there, or to any other stable or longterm tree, then please email the backport, including the original git commit id to stable@vger.kernel.org.
thanks,
greg k-h
------------------ original commit in Linus's tree ------------------
From 756125289285f6e55a03861bf4b6257aa3d19a93 Mon Sep 17 00:00:00 2001 From: Paul Moore paul@paul-moore.com Date: Mon, 24 Feb 2020 16:38:57 -0500 Subject: [PATCH] audit: always check the netlink payload length in audit_receive_msg()
This patch ensures that we always check the netlink payload length in audit_receive_msg() before we take any action on the payload itself.
Cc: stable@vger.kernel.org Reported-by: syzbot+399c44bf1f43b8747403@syzkaller.appspotmail.com Reported-by: syzbot+e4b12d8d202701f08b6d@syzkaller.appspotmail.com Signed-off-by: Paul Moore paul@paul-moore.com
Worked around missing 626abcd13d4e ("audit: add syscall information to CONFIG_CHANGE records") in older kernels, queued for 4.19-4.4.