netfilter: xt_CT: Reject the non-null terminated string from user space - openslx/kernel-qcow2-linux.git

diff options

author	Gao Feng	2018-05-30 04:29:31 +0200
committer	Pablo Neira Ayuso	2018-06-01 10:14:51 +0200
commit	8f4d19aacb64f2b3d65c8cf7974c3d153224b5f2 (patch)
tree	a8d0496a35d5eb92d8517017b8ccea917128fc8a /net/netfilter/nf_tables_api.c
parent	net-sysfs: Fix memory leak in XPS configuration (diff)
download	kernel-qcow2-linux-8f4d19aacb64f2b3d65c8cf7974c3d153224b5f2.tar.gz kernel-qcow2-linux-8f4d19aacb64f2b3d65c8cf7974c3d153224b5f2.tar.xz kernel-qcow2-linux-8f4d19aacb64f2b3d65c8cf7974c3d153224b5f2.zip

netfilter: xt_CT: Reject the non-null terminated string from user space

The helper and timeout strings are from user-space, we need to make sure they are null terminated. If not, evil user could make kernel read the unexpected memory, even print it when fail to find by the following codes. pr_info_ratelimited("No such helper \"%s\"\n", helper_name); Signed-off-by: Gao Feng <gfree.wind@vip.163.com> Acked-by: Florian Westphal <fw@strlen.de> Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>

Diffstat (limited to 'net/netfilter/nf_tables_api.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: