Kernel/linux
1
0
Fork 0
mirror of https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git synced 2025-01-13 00:29:50 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
linux/net/netfilter/ipset
History
Jozsef Kadlecsik d8aacd8718 netfilter: ipset: Check IPSET_ATTR_ETHER netlink attribute length 
Julia Lawall pointed out that IPSET_ATTR_ETHER netlink attribute length
was not checked explicitly, just for the maximum possible size. Malicious
netlink clients could send shorter attribute and thus resulting a kernel
read after the buffer.

The patch adds the explicit length checkings.

Reported-by: Julia Lawall <julia.lawall@lip6.fr>
Signed-off-by: Jozsef Kadlecsik <kadlec@blackhole.kfki.hu>
2016-03-08 20:36:17 +01:00
..
ip_set_bitmap_gen.h
netfilter: ipset: Fix extension alignment
2015-11-07 11:21:47 +01:00
ip_set_bitmap_ip.c
netfilter: ipset: Fix extension alignment
2015-11-07 11:21:47 +01:00
ip_set_bitmap_ipmac.c
netfilter: ipset: Check IPSET_ATTR_ETHER netlink attribute length
2016-03-08 20:36:17 +01:00
ip_set_bitmap_port.c
netfilter: ipset: Fix extension alignment
2015-11-07 11:21:47 +01:00
ip_set_core.c
netfilter: ipset: Fix set:list type crash when flush/dump set in parallel
2016-02-24 20:32:21 +01:00
ip_set_getport.c
netfilter: ipset: Fix coding styles reported by checkpatch.pl
2015-06-14 10:40:18 +02:00
ip_set_hash_gen.h
netfilter: ipset: Fix hash type expire: release empty hash bucket block
2015-11-07 11:28:49 +01:00
ip_set_hash_ip.c
netfilter: ipset: Fix coding styles reported by checkpatch.pl
2015-06-14 10:40:18 +02:00
ip_set_hash_ipmark.c
netfilter: ipset: Fix coding styles reported by checkpatch.pl
2015-06-14 10:40:18 +02:00
ip_set_hash_ipport.c
netfilter: ipset: Fix coding styles reported by checkpatch.pl
2015-06-14 10:40:18 +02:00
ip_set_hash_ipportip.c
netfilter: ipset: Fix coding styles reported by checkpatch.pl
2015-06-14 10:40:18 +02:00
ip_set_hash_ipportnet.c
netfilter: ipset: Fix coding styles reported by checkpatch.pl
2015-06-14 10:40:18 +02:00
ip_set_hash_mac.c
netfilter: ipset: Check IPSET_ATTR_ETHER netlink attribute length
2016-03-08 20:36:17 +01:00
ip_set_hash_net.c
netfilter: ipset: Fix coding styles reported by checkpatch.pl
2015-06-14 10:40:18 +02:00
ip_set_hash_netiface.c
netfilter: ipset: allow a 0 netmask with hash_netiface type
2016-01-13 14:03:43 +01:00
ip_set_hash_netnet.c
netfilter: ipset: Fixing unnamed union init
2015-08-29 01:02:28 +02:00
ip_set_hash_netport.c
netfilter: ipset: Fix coding styles reported by checkpatch.pl
2015-06-14 10:40:18 +02:00
ip_set_hash_netportnet.c
netfilter: ipset: Fixing unnamed union init
2015-08-29 01:02:28 +02:00
ip_set_list_set.c
netfilter: ipset: Fix set:list type crash when flush/dump set in parallel
2016-02-24 20:32:21 +01:00
Kconfig
netfilter: ipset: hash:mac type added to ipset
2014-09-15 22:20:21 +02:00
Makefile
netfilter: ipset: hash:mac type added to ipset
2014-09-15 22:20:21 +02:00
pfxlen.c
netfilter: ipset: Fix coding styles reported by checkpatch.pl
2015-06-14 10:40:18 +02:00