]> git.ipfire.org Git - thirdparty/kernel/stable-queue.git/blame - releases/4.4.14/netfilter-x_tables-assert-minimum-target-size.patch
projects / thirdparty / kernel / stable-queue.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
drop queue-4.14/mips-make-sure-dt-memory-regions-are-valid.patch
[thirdparty/kernel/stable-queue.git] / releases / 4.4.14 / netfilter-x_tables-assert-minimum-target-size.patch
CommitLineData
2026c4e1
GKH		 1From a08e4e190b866579896c09af59b3bdca821da2cd Mon Sep 17 00:00:00 2001
2From: Florian Westphal <fw@strlen.de>
3Date: Fri, 1 Apr 2016 14:17:25 +0200
4Subject: netfilter: x_tables: assert minimum target size
5
6From: Florian Westphal <fw@strlen.de>
7
8commit a08e4e190b866579896c09af59b3bdca821da2cd upstream.
9
10The target size includes the size of the xt_entry_target struct.
11
12Signed-off-by: Florian Westphal <fw@strlen.de>
13Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
14Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
15
16---
17 net/netfilter/x_tables.c | 3 +++
18 1 file changed, 3 insertions(+)
19
20--- a/net/netfilter/x_tables.c
21+++ b/net/netfilter/x_tables.c
22@@ -567,6 +567,9 @@ int xt_check_entry_offsets(const void *b
23 return -EINVAL;
24
25 t = (void *)(e + target_offset);
26+ if (t->u.target_size < sizeof(*t))
27+ return -EINVAL;
28+
29 if (target_offset + t->u.target_size > next_offset)
30 return -EINVAL;
31
Mirror of https://git.kernel.org/pub/scm/linux/kernel/git/stable/stable-queue.git