]> git.ipfire.org Git - thirdparty/libnftnl.git/commit
projects / thirdparty / libnftnl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 0d5bb96) | patch
obj/ct_timeout: Avoid array overrun in timeout_parse_attr_data()
authorPhil Sutter <phil@nwl.cc>
Fri, 4 Oct 2019 19:44:14 +0000 (21:44 +0200)
committerPhil Sutter <phil@nwl.cc>
Tue, 15 Oct 2019 17:34:12 +0000 (19:34 +0200)
commit00b144bc9d093dbdd1a3690dc8e8fb90b5447f2d
treeb9f6d50a72a20f17b68ba77d61b4922a7ff3886btree | snapshot
parent0d5bb960b2f953c71fff15f88c8f0c331a1fa965commit | diff
obj/ct_timeout: Avoid array overrun in timeout_parse_attr_data()

Array 'tb' has only 'attr_max' elements, the loop overstepped its
boundary by one. Copy array_size() macro from include/utils.h in
nftables.git to make sure code does the right thing.

Fixes: 0adceeab1597a ("src: add ct timeout support")
Signed-off-by: Phil Sutter <phil@nwl.cc>
Acked-by: Pablo Neira Ayuso <pablo@netfilter.org>
include/utils.h diff | blob | blame | history
src/obj/ct_timeout.c diff | blob | blame | history
Mirror of https://git.netfilter.org/libnftnl