sctp: Make sure N * sizeof(union sctp_addr) does not overflow. (CVE-2008-2826)

As noticed by Gabriel Campana, the kmalloc() length arg
passed in by sctp_getsockopt_local_addrs_old() can overflow
if ->addr_num is large enough.

Therefore, enforce an appropriate limit.

Signed-off-by: David S. Miller <davem@davemloft.net>
Signed-off-by: Adrian Bunk <bunk@kernel.org>

0 files changed, 0 insertions, 0 deletions