]> www.infradead.org Git - users/jedix/linux-maple.git/commit
projects / users / jedix / linux-maple.git / commit
summary | shortlog | log | commit | commitdiff | tree
(parent: 5e9b9ce) | patch
netfilter: x_tables: validate e->target_offset early
authorFlorian Westphal <fw@strlen.de>
Tue, 22 Mar 2016 17:02:49 +0000 (18:02 +0100)
committerChuck Anderson <chuck.anderson@oracle.com>
Fri, 30 Sep 2016 06:03:44 +0000 (23:03 -0700)
commitb596c77b2eb6bd0c8915d7be945e02e729342e66
tree06dba2e6880fd28d05361c66208f20d2551d19cftree
parent5e9b9ce37bba601e4a38960eb4efed09b0dd8fb3commit | diff
netfilter: x_tables: validate e->target_offset early

Orabug: 24690280
CVE: CVE-2016-4997, CVE-2016-4998

We should check that e->target_offset is sane before
mark_source_chains gets called since it will fetch the target entry
for loop detection.

Signed-off-by: Florian Westphal <fw@strlen.de>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
(cherry picked from commit bdf533de6968e9686df777dc178486f600c6e617)
Signed-off-by: Brian Maly <brian.maly@oracle.com>
Conflicts:
net/ipv4/netfilter/arp_tables.c
net/ipv4/netfilter/ip_tables.c
net/ipv6/netfilter/ip6_tables.c

Signed-off-by: Brian Maly <brian.maly@oracle.com>
net/ipv4/netfilter/arp_tables.c diff | blob | history
net/ipv4/netfilter/ip_tables.c diff | blob | history
net/ipv6/netfilter/ip6_tables.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.