]> git.ipfire.org Git - thirdparty/iptables.git/commit
projects / thirdparty / iptables.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 32cea83) | patch
libxtables: properly reject empty hostnames
authorJan Engelhardt <jengelh@medozas.de>
Sat, 9 Jul 2011 14:01:18 +0000 (16:01 +0200)
committerJan Engelhardt <jengelh@medozas.de>
Sat, 9 Jul 2011 14:01:18 +0000 (16:01 +0200)
commitc0e69db337540b22a3b3f739b1143341e7b759b7
tree6ca05679d2a30d5e978e1cfdd28ba11bca297758tree
parent32cea83f26a2c342b9410e6dfb0530b33f8af928commit | diff
libxtables: properly reject empty hostnames

An empty hostname in the address list of an -s/-d argument, which may
be the result of a typo, is interpreted as 0/0, which, when combined
with -j ACCEPT, leads to an undesired opening of the firewall.

References: http://bugzilla.netfilter.org/show_bug.cgi?id=727
Signed-off-by: Jan Engelhardt <jengelh@medozas.de>
iptables/xtables.c diff | blob | blame | history
Mirror of git://git.netfilter.org/iptables