linux/net/netfilter/ipset at 83fefd2d5bec94de765305d44633c42371360a2a - linux - sys114

shinys000114/linux

mirror of https://github.com/hardkernel/linux.git synced 2026-04-08 14:13:05 +09:00

Files

History

Jozsef Kadlecsik d8aacd8718 netfilter: ipset: Check IPSET_ATTR_ETHER netlink attribute length

Julia Lawall pointed out that IPSET_ATTR_ETHER netlink attribute length
was not checked explicitly, just for the maximum possible size. Malicious
netlink clients could send shorter attribute and thus resulting a kernel
read after the buffer.

The patch adds the explicit length checkings.

Reported-by: Julia Lawall <julia.lawall@lip6.fr>
Signed-off-by: Jozsef Kadlecsik <kadlec@blackhole.kfki.hu>

2016-03-08 20:36:17 +01:00

..

ip_set_bitmap_gen.h

netfilter: ipset: Fix extension alignment

2015-11-07 11:21:47 +01:00

ip_set_bitmap_ip.c

netfilter: ipset: Fix extension alignment

2015-11-07 11:21:47 +01:00

ip_set_bitmap_ipmac.c

netfilter: ipset: Check IPSET_ATTR_ETHER netlink attribute length

2016-03-08 20:36:17 +01:00

ip_set_bitmap_port.c

netfilter: ipset: Fix extension alignment

2015-11-07 11:21:47 +01:00

ip_set_core.c

netfilter: ipset: Fix set:list type crash when flush/dump set in parallel

2016-02-24 20:32:21 +01:00

ip_set_getport.c

netfilter: ipset: Fix coding styles reported by checkpatch.pl

2015-06-14 10:40:18 +02:00

ip_set_hash_gen.h

netfilter: ipset: Fix hash type expire: release empty hash bucket block

2015-11-07 11:28:49 +01:00

ip_set_hash_ip.c

netfilter: ipset: Fix coding styles reported by checkpatch.pl

2015-06-14 10:40:18 +02:00

ip_set_hash_ipmark.c

netfilter: ipset: Fix coding styles reported by checkpatch.pl

2015-06-14 10:40:18 +02:00

ip_set_hash_ipport.c

netfilter: ipset: Fix coding styles reported by checkpatch.pl

2015-06-14 10:40:18 +02:00

ip_set_hash_ipportip.c

netfilter: ipset: Fix coding styles reported by checkpatch.pl

2015-06-14 10:40:18 +02:00

ip_set_hash_ipportnet.c

netfilter: ipset: Fix coding styles reported by checkpatch.pl

2015-06-14 10:40:18 +02:00

ip_set_hash_mac.c

netfilter: ipset: Check IPSET_ATTR_ETHER netlink attribute length

2016-03-08 20:36:17 +01:00

ip_set_hash_net.c

netfilter: ipset: Fix coding styles reported by checkpatch.pl

2015-06-14 10:40:18 +02:00

ip_set_hash_netiface.c

netfilter: ipset: allow a 0 netmask with hash_netiface type

2016-01-13 14:03:43 +01:00

ip_set_hash_netnet.c

netfilter: ipset: Fixing unnamed union init

2015-08-29 01:02:28 +02:00

ip_set_hash_netport.c

netfilter: ipset: Fix coding styles reported by checkpatch.pl

2015-06-14 10:40:18 +02:00

ip_set_hash_netportnet.c

netfilter: ipset: Fixing unnamed union init

2015-08-29 01:02:28 +02:00

ip_set_list_set.c

netfilter: ipset: Fix set:list type crash when flush/dump set in parallel

2016-02-24 20:32:21 +01:00

Kconfig

netfilter: ipset: hash:mac type added to ipset

2014-09-15 22:20:21 +02:00

Makefile

netfilter: ipset: hash:mac type added to ipset

2014-09-15 22:20:21 +02:00

pfxlen.c

netfilter: ipset: Fix coding styles reported by checkpatch.pl

2015-06-14 10:40:18 +02:00