Re: [PATCH nf] netfilter: x_tables: fix compat match/target pad out-of-bound write

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Subject: Re: [PATCH nf] netfilter: x_tables: fix compat match/target pad out-of-bound write
From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Date: Tue, 13 Apr 2021 00:23:13 +0200
Cc: netfilter-devel@xxxxxxxxxxxxxxx, syzbot+cfc0247ac173f597aaaa@xxxxxxxxxxxxxxxxxxxxxxxxx, Andy Nguyen <theflow@xxxxxxxxxx>
In-reply-to: <20210407193857.21120-1-fw@strlen.de>
User-agent: Mutt/1.10.1 (2018-07-13)

On Wed, Apr 07, 2021 at 09:38:57PM +0200, Florian Westphal wrote:
> xt_compat_match/target_from_user doesn't check that zeroing the area
> to start of next rule won't write past end of allocated ruleset blob.
> 
> Remove this code and zero the entire blob beforehand.

Applied.

References:
- [PATCH nf] netfilter: x_tables: fix compat match/target pad out-of-bound write
  - From: Florian Westphal

Prev by Date: [PATCH nf-next v2 5/5] netfilter: conntrack: convert sysctls to u8
Next by Date: [PATCH net 0/7] Netfilter fixes for net
Previous by thread: [PATCH nf] netfilter: x_tables: fix compat match/target pad out-of-bound write
Next by thread: [PATCH nf 0/2] arp,ebtables: add pre_exit hooks for arp/ebtable hook unregister
Index(es):
- Date
- Thread

[Index of Archives] [Netfitler Users] [Berkeley Packet Filter] [LARTC] [Bugtraq] [Yosemite Forum]

Powered by Linux