]> asedeno.scripts.mit.edu Git - linux.git/commit
projects / linux.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 8670c3a) | patch
netfilter: nf_tables: check for overflow of rule dlen field
authorPatrick McHardy <kaber@trash.net>
Tue, 3 Mar 2015 20:04:19 +0000 (20:04 +0000)
committerPablo Neira Ayuso <pablo@netfilter.org>
Wed, 4 Mar 2015 17:46:05 +0000 (18:46 +0100)
commit9889840f5988ecfd43b00c9abb83c1804e21406b
tree9124100fd1cb08ea518f56d01b7f0907fd362fe7tree | snapshot
parent8670c3a55e91cb27a4b4d4d4c4fa35b0149e1abfcommit | diff
netfilter: nf_tables: check for overflow of rule dlen field

Check that the space required for the expressions doesn't exceed the
size of the dlen field, which would lead to the iterators crashing.

Signed-off-by: Patrick McHardy <kaber@trash.net>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
net/netfilter/nf_tables_api.c diff | blob | history
local clone of linux.git