Am 17.03.2011 13:15, schrieb Changli Gao: > On Thu, Mar 17, 2011 at 7:32 PM, Vasiliy Kulikov <segoon@xxxxxxxxxxxx> wrote: >> 'buffer' string is copied from userspace. It is not checked whether it is >> zero terminated. This may lead to overflow inside of simple_strtoul(). >> Changli Gao suggested to copy not more than user supplied 'size' bytes. >> >> It was introduced before the git epoch. Files "ipt_CLUSTERIP/*" are >> root writable only by default, however, on some setups permissions might be >> relaxed to e.g. network admin user. >> >> Signed-off-by: Vasiliy Kulikov <segoon@xxxxxxxxxxxx> > Acked-by: Changli Gao <xiaosuo@xxxxxxxxx> > > Applied, thanks everyone. -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
