]> git.ipfire.org Git - thirdparty/ipset.git/commit
projects / thirdparty / ipset.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 4d59a90) | patch
netfilter: ipset: Check for comment netlink attribute length
authorSergey Popovich <popovich_sergei@mail.ua>
Tue, 20 Jan 2015 12:03:19 +0000 (14:03 +0200)
committerJozsef Kadlecsik <kadlec@blackhole.kfki.hu>
Mon, 23 Mar 2015 18:17:22 +0000 (19:17 +0100)
commitae578386d16ed9868cf77e06ec83c491c7eb630b
treefe53150f9fb6b505ce94f787d45fe2523a805ca6tree | snapshot
parent4d59a90b5abaebb90087dc5e153222bc3372b5b7commit | diff
netfilter: ipset: Check for comment netlink attribute length

Ensure userspace supplies string not longer than
IPSET_MAX_COMMENT_SIZE.

Signed-off-by: Sergey Popovich <popovich_sergei@mail.ua>
Signed-off-by: Jozsef Kadlecsik <kadlec@blackhole.kfki.hu>
15 files changed:
kernel/net/netfilter/ipset/ip_set_bitmap_ip.c diff | blob | blame | history
kernel/net/netfilter/ipset/ip_set_bitmap_ipmac.c diff | blob | blame | history
kernel/net/netfilter/ipset/ip_set_bitmap_port.c diff | blob | blame | history
kernel/net/netfilter/ipset/ip_set_hash_ip.c diff | blob | blame | history
kernel/net/netfilter/ipset/ip_set_hash_ipmark.c diff | blob | blame | history
kernel/net/netfilter/ipset/ip_set_hash_ipport.c diff | blob | blame | history
kernel/net/netfilter/ipset/ip_set_hash_ipportip.c diff | blob | blame | history
kernel/net/netfilter/ipset/ip_set_hash_ipportnet.c diff | blob | blame | history
kernel/net/netfilter/ipset/ip_set_hash_mac.c diff | blob | blame | history
kernel/net/netfilter/ipset/ip_set_hash_net.c diff | blob | blame | history
kernel/net/netfilter/ipset/ip_set_hash_netiface.c diff | blob | blame | history
kernel/net/netfilter/ipset/ip_set_hash_netnet.c diff | blob | blame | history
kernel/net/netfilter/ipset/ip_set_hash_netport.c diff | blob | blame | history
kernel/net/netfilter/ipset/ip_set_hash_netportnet.c diff | blob | blame | history
kernel/net/netfilter/ipset/ip_set_list_set.c diff | blob | blame | history
Mirror of git://git.netfilter.org/ipset