Page 1 of 1

PAX: size overflow detected in function tcp_ack

PostPosted: Sat Oct 15, 2016 6:36 pm
by mathias
Running Linux 4.7.7 and grsecurity-3.1-4.7.7-201610101902.patch. It occurs shortly after starting to send a fair bit of network traffic to the machine. This error does not occur when running Linux 4.7.5 with grsecurity-3.1-4.7.5-201609261522.patch applied.

Code: Select all
PAX: size overflow detected in function tcp_ack include/linux/skbuff.h:544 cicus.1935_1105 min, count: 198, decl: tcp_rtt_estimator; num: 2; context: fndecl;


A screenshot of the full error is available at https://calenhad.com/grsec-3.1-4.7.7-201610101902-tcp-ack-error.jpg

Re: PAX: size overflow detected in function tcp_ack

PostPosted: Mon Oct 17, 2016 6:14 am
by PaX Team
thanks, this and a few other false positives are already fixed in the latest patches.