projects / platform / kernel / linux-starfive.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 24e2278) | patch
netfilter: nf_tables: out-of-bound check in chain blob
authorPablo Neira Ayuso <pablo@netfilter.org>
Tue, 6 Jun 2023 14:32:44 +0000 (16:32 +0200)
committerPablo Neira Ayuso <pablo@netfilter.org>
Tue, 6 Jun 2023 22:43:44 +0000 (00:43 +0200)
commit08e42a0d3ad30f276f9597b591f975971a1b0fcf
tree2180017299fcf71159aa00adbbc24799b056747ctree | snapshot
parent24e227896bbf003165e006732dccb3516f87f88ecommit | diff
netfilter: nf_tables: out-of-bound check in chain blob

Add current size of rule expressions to the boundary check.

Fixes: 2c865a8a28a1 ("netfilter: nf_tables: add rule blob layout")
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
net/netfilter/nf_tables_api.c diff | blob | history
Domain: System / Kernel;