On Friday 2009-06-05 15:30, Patrick McHardy wrote: >Jan Engelhardt wrote: >> On Friday 2009-06-05 13:54, Patrick McHardy wrote: >> >>>> + >>>> + if (optsize > sizeof(opts)) >>>> + optsize = sizeof(opts); >>>> >>> How can this happen? The doff field can only represent up to 40 >>> bytes of option length. >>> >> >> Forged packets? > >How would that increase the size of the doff field? :) Ah never mind. Just had to read the RFC... again. -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
