]> git.ipfire.org Git - thirdparty/nftables.git/commit
projects / thirdparty / nftables.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: e957bd9) | patch
netlink: Avoid potential NULL-pointer deref in netlink_gen_payload_stmt()
authorPhil Sutter <phil@nwl.cc>
Mon, 20 Jan 2020 15:32:40 +0000 (16:32 +0100)
committerPhil Sutter <phil@nwl.cc>
Wed, 22 Jan 2020 08:01:01 +0000 (09:01 +0100)
commitc9ddf0bff363fc9101b563b592db600bdf4d65c5
treef996aef62b559c8e480593b2b48e5976f38fa793tree
parente957bd9f10d5e36671a0b0398e2037fc6201275bcommit | diff
netlink: Avoid potential NULL-pointer deref in netlink_gen_payload_stmt()

With payload_needs_l4csum_update_pseudohdr() unconditionally
dereferencing passed 'desc' parameter and a previous check for it to be
non-NULL, make sure to call the function only if input is sane.

Fixes: 68de70f2b3fc6 ("netlink_linearize: fix IPv6 layer 4 checksum mangling")
Signed-off-by: Phil Sutter <phil@nwl.cc>
Acked-by: Pablo Neira Ayuso <pablo@netfilter.org>
src/netlink_linearize.c diff | blob | blame | history
Mirror of git://git.netfilter.org/nftables