In the Linux kernel, the following vulnerability has been resolved:[EOL][EOL]netlink: do not hard code device address lenth in fdb dumps[EOL][EOL]syzbot reports that some netdev devices do not have a six bytes[EOL]address [1][EOL][EOL]Replace ETH_ALEN by dev->addr_len.[EOL][EOL][1] (Case of a device where dev->addr_len = 4)[EOL][EOL]BUG: KMSAN: kernel-infoleak in instrument_copy_to_user include/linux/instrumented.h:114 [inline][EOL]BUG: KMSAN: kernel-infoleak in copyout+0xb8/0x100 lib/iov_iter.c:169[EOL]instrument_copy_to_user include/linux/instrumented.h:114 [inline][EOL]copyout+0xb8/0x100 lib/iov_iter.c:169[EOL]_copy_to_iter+0x6d8/0x1d00 lib/iov_iter.c:536[EOL]copy_to_iter include/linux/uio.h:206 [inline][EOL]simple_copy_to_iter+0x68/0xa0 net/core/datagram.c:513[EOL]__skb_datagram_iter+0x123/0xdc0 net/core/datagram.c:419[EOL]skb_copy_datagram_iter+0x5c/0x200 net/core/datagram.c:527[EOL]skb_copy_datagram_msg include/linux/skbuff.h:3960 [inline][EOL]netlink_recvmsg+0x4ae/0x15a0 net/netlink/af_netlink.c:1970[EOL]sock_recvmsg_nosec net/socket.c:1019 [inline][EOL]sock_recvmsg net/socket.c:1040 [inline][EOL]____sys_recvmsg+0x283/0x7f0 net/socket.c:2722[EOL]___sys_recvmsg+0x223/0x840 net/socket.c:2764[EOL]do_recvmmsg+0x4f9/0xfd0 net/socket.c:2858[EOL]__sys_recvmmsg net/socket.c:2937 [inline][EOL]__do_sys_recvmmsg net/socket.c:2960 [inline][EOL]__se_sys_recvmmsg net/socket.c:2953 [inline][EOL]__x64_sys_recvmmsg+0x397/0x490 net/socket.c:2953[EOL]do_syscall_x64 arch/x86/entry/common.c:50 [inline][EOL]do_syscall_64+0x41/0xc0 arch/x86/entry/common.c:80[EOL]entry_SYSCALL_64_after_hwframe+0x63/0xcd[EOL][EOL]Uninit was stored to memory at:[EOL]__nla_put lib/nlattr.c:1009 [inline][EOL]nla_put+0x1c6/0x230 lib/nlattr.c:1067[EOL]nlmsg_populate_fdb_fill+0x2b8/0x600 net/core/rtnetlink.c:4071[EOL]nlmsg_populate_fdb net/core/rtnetlink.c:4418 [inline][EOL]ndo_dflt_fdb_dump+0x616/0x840 net/core/rtnetlink.c:4456[EOL]rtnl_fdb_dump+0x14ff/0x1fc0 net/core/rtnetlink.c:4629[EOL]netlink_dump+0x9d1/0x1310 net/netlink/af_netlink.c:2268[EOL]netlink_recvmsg+0xc5c/0x15a0 net/netlink/af_netlink.c:1995[EOL]sock_recvmsg_nosec+0x7a/0x120 net/socket.c:1019[EOL]____sys_recvmsg+0x664/0x7f0 net/socket.c:2720[EOL]___sys_recvmsg+0x223/0x840 net/socket.c:2764[EOL]do_recvmmsg+0x4f9/0xfd0 net/socket.c:2858[EOL]__sys_recvmmsg net/socket.c:2937 [inline][EOL]__do_sys_recvmmsg net/socket.c:2960 [inline][EOL]__se_sys_recvmmsg net/socket.c:2953 [inline][EOL]__x64_sys_recvmmsg+0x397/0x490 net/socket.c:2953[EOL]do_syscall_x64 arch/x86/entry/common.c:50 [inline][EOL]do_syscall_64+0x41/0xc0 arch/x86/entry/common.c:80[EOL]entry_SYSCALL_64_after_hwframe+0x63/0xcd[EOL][EOL]Uninit was created at:[EOL]slab_post_alloc_hook+0x12d/0xb60 mm/slab.h:716[EOL]slab_alloc_node mm/slub.c:3451 [inline][EOL]__kmem_cache_alloc_node+0x4ff/0x8b0 mm/slub.c:3490[EOL]kmalloc_trace+0x51/0x200 mm/slab_common.c:1057[EOL]kmalloc include/linux/slab.h:559 [inline][EOL]__hw_addr_create net/core/dev_addr_lists.c:60 [inline][EOL]__hw_addr_add_ex+0x2e5/0x9e0 net/core/dev_addr_lists.c:118[EOL]__dev_mc_add net/core/dev_addr_lists.c:867 [inline][EOL]dev_mc_add+0x9a/0x130 net/core/dev_addr_lists.c:885[EOL]igmp6_group_added+0x267/0xbc0 net/ipv6/mcast.c:680[EOL]ipv6_mc_up+0x296/0x3b0 net/ipv6/mcast.c:2754[EOL]ipv6_mc_remap+0x1e/0x30 net/ipv6/mcast.c:2708[EOL]addrconf_type_change net/ipv6/addrconf.c:3731 [inline][EOL]addrconf_notify+0x4d3/0x1d90 net/ipv6/addrconf.c:3699[EOL]notifier_call_chain kernel/notifier.c:93 [inline][EOL]raw_notifier_call_chain+0xe4/0x430 kernel/notifier.c:461[EOL]call_netdevice_notifiers_info net/core/dev.c:1935 [inline][EOL]call_netdevice_notifiers_extack net/core/dev.c:1973 [inline][EOL]call_netdevice_notifiers+0x1ee/0x2d0 net/core/dev.c:1987[EOL]bond_enslave+0xccd/0x53f0 drivers/net/bonding/bond_main.c:1906[EOL]do_set_master net/core/rtnetlink.c:2626 [inline][EOL]rtnl_newlink_create net/core/rtnetlink.c:3460 [inline][EOL]__rtnl_newlink net/core/rtnetlink.c:3660 [inline][EOL]rtnl_newlink+0x378c/0x40e0 net/core/rtnetlink.c:3673[EOL]rtnetlink_rcv_msg+0x16a6/0x1840 net/core/rtnetlink.c:6395[EOL]netlink_rcv_skb+0x371/0x650 net/netlink/af_netlink.c:2546[EOL]rtnetlink_rcv+0x34/0x40 net/core/rtnetlink.c:6413[EOL]netlink_unicast_kernel net/netlink/af_netlink.c:1339 [inline][EOL]netlink_unicast+0xf28/0x1230 net/netlink/af_[EOL]---truncated---
