]> www.infradead.org Git - users/jedix/linux-maple.git/commit
projects / users / jedix / linux-maple.git / commit
summary | shortlog | log | commit | commitdiff | tree
(parent: b0e354e) | patch
netfilter: x_tables: check for size overflow
authorFlorian Westphal <fw@strlen.de>
Fri, 23 Sep 2016 18:29:57 +0000 (14:29 -0400)
committerChuck Anderson <chuck.anderson@oracle.com>
Fri, 30 Sep 2016 06:04:31 +0000 (23:04 -0700)
commit1eb755025bb3579bea60d778c58d344ce4a7a5bd
tree524d503f33bd437b3410928b3cbb8005d9435529tree
parentb0e354e6e6dd443b86858b62c23039f34260fbedcommit | diff
netfilter: x_tables: check for size overflow

Orabug: 24690280
CVE: CVE-2016-3134

Ben Hawkes says:
integer overflow in xt_alloc_table_info, which on 32-bit systems can
lead to small structure allocation and a copy_from_user based heap
corruption.

Reported-by: Ben Hawkes <hawkes@google.com>
Signed-off-by: Florian Westphal <fw@strlen.de>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Signed-off-by: Brian Maly <brian.maly@oracle.com>
net/netfilter/x_tables.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.