From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx> Date: Wed, 8 Jan 2014 20:13:21 +0100 > The following patchset contains three Netfilter updates, they are: > > * Fix wrong usage of skb_header_pointer in the DCCP protocol helper that > has been there for quite some time. It was resulting in copying the dccp > header to a pointer allocated in the stack. Fortunately, this pointer > provides room for the dccp header is 4 bytes long, so no crashes have been > reported so far. From Daniel Borkmann. > > * Use format string to print in the invocation of nf_log_packet(), again > in the DCCP helper. Also from Daniel Borkmann. > > * Revert "netfilter: avoid get_random_bytes call" as prandom32 does not > guarantee enough entropy when being calling this at boot time, that may > happen when reloading the rule. > > You can pull these changes from: > > git://git.kernel.org/pub/scm/linux/kernel/git/pablo/nf-next.git master Pulled, thanks Pablo. -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
