JP Abgrall 4f3824a38c
netfilter: ipv6: fix crash caused by ipv6_find_hdr() ...
When calling:
ipv6_find_hdr(skb, &thoff, -1, NULL)
on a fragmented packet, thoff would be left with a random
value causing callers to read random memory offsets with:
skb_header_pointer(skb, thoff, ...)
Now we force ipv6_find_hdr() to return a failure in this case.
Calling:
ipv6_find_hdr(skb, &thoff, -1, &fragoff)
will set fragoff as expected, and not return a failure.
Change-Id: Ib474e8a4267dd2b300feca325811330329684a88
Signed-off-by: JP Abgrall <jpa@google.com >
2011-09-30 19:24:19 -07:00
2011-05-26 12:13:57 -07:00
2011-05-23 16:29:24 -04:00
2011-07-14 15:18:49 -07:00
2011-03-31 18:59:10 -07:00
2011-05-27 11:16:27 -07:00
2011-04-17 00:48:31 -07:00
2011-05-20 13:43:21 -07:00
2011-08-29 15:24:13 -07:00
2011-08-04 21:58:31 -07:00
2011-06-16 23:59:09 -04:00
2011-05-26 14:23:35 -04:00
2011-07-19 11:25:04 -07:00
2011-08-04 21:58:34 -07:00
2011-03-14 17:02:42 -07:00
2011-05-18 18:32:03 -04:00
2011-05-20 13:43:21 -07:00
2011-03-17 11:59:32 +11:00
2011-05-05 14:59:02 -07:00
2011-04-17 00:15:22 -07:00
2011-01-12 19:00:40 -08:00
2011-06-13 18:03:22 -04:00
2011-07-12 20:10:37 -07:00
2011-09-30 19:24:19 -07:00
2011-03-21 18:16:39 -07:00
2011-06-06 17:00:35 -07:00
2011-05-26 09:48:24 +02:00
2011-05-24 01:13:12 -04:00
2011-06-05 14:11:09 -07:00
2011-04-11 18:59:05 -07:00
2011-08-04 21:58:35 -07:00
2011-09-29 19:14:27 -07:00
2011-05-22 21:43:41 -07:00
2011-05-24 01:13:12 -04:00
2011-04-14 00:20:07 -07:00
2011-06-06 22:42:06 -07:00
2011-05-24 01:13:12 -04:00
2011-05-25 13:46:23 -07:00
2011-06-14 09:09:15 -07:00
2011-04-14 00:20:07 -07:00
2011-05-19 18:51:50 -04:00
2011-06-06 16:41:33 -07:00
2011-07-14 15:16:31 -07:00
2011-08-04 21:58:40 -07:00
2011-05-10 16:04:02 -04:00
2011-05-24 01:13:12 -04:00
2011-03-31 11:26:23 -03:00
2011-09-15 09:25:48 -07:00
2011-03-31 11:26:23 -03:00
2011-07-08 08:58:42 -07:00
2011-06-14 09:09:31 -07:00
2011-05-05 11:10:14 -07:00
2011-06-14 09:09:35 -07:00
2011-06-14 09:09:31 -07:00
2011-05-20 13:43:21 -07:00
4f3824a38c