PAX: size overflow detected in function tcp_ack

Discuss usability issues, general maintenance, and general support issues for a grsecurity-enabled system.

PAX: size overflow detected in function tcp_ack

Postby mathias » Sat Oct 15, 2016 6:36 pm

Running Linux 4.7.7 and grsecurity-3.1-4.7.7-201610101902.patch. It occurs shortly after starting to send a fair bit of network traffic to the machine. This error does not occur when running Linux 4.7.5 with grsecurity-3.1-4.7.5-201609261522.patch applied.

Code: Select all
PAX: size overflow detected in function tcp_ack include/linux/skbuff.h:544 cicus.1935_1105 min, count: 198, decl: tcp_rtt_estimator; num: 2; context: fndecl;


A screenshot of the full error is available at https://calenhad.com/grsec-3.1-4.7.7-201610101902-tcp-ack-error.jpg
mathias
 
Posts: 14
Joined: Mon May 11, 2015 6:25 pm

Re: PAX: size overflow detected in function tcp_ack

Postby PaX Team » Mon Oct 17, 2016 6:14 am

thanks, this and a few other false positives are already fixed in the latest patches.
PaX Team
 
Posts: 2310
Joined: Mon Mar 18, 2002 4:35 pm


Return to grsecurity support