On Wed, Jan 29, 2025 at 06:06:30PM +0100, nicolas.bouchinet@xxxxxxxxxxx wrote: > From: Nicolas Bouchinet <nicolas.bouchinet@xxxxxxxxxxx> > > nf_conntrack_max and nf_conntrack_expect_max sysctls were authorized to > be written any negative value, which would then be stored in the > unsigned int variables nf_conntrack_max and nf_ct_expect_max variables. > > While the do_proc_dointvec_conv function is supposed to limit writing > handled by proc_dointvec proc_handler to INT_MAX. Such a negative value > being written in an unsigned int leads to a very high value, exceeding > this limit. This is applied to nf-next, thanks
