kernel_xiaomi_sm6150.git - kernel_xiaomi

diff options

author	Florian Westphal <fw@strlen.de>	2021-04-07 21:38:57 +0200
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>	2021-04-16 11:57:53 +0200
commit	522a0191944e3db9c30ade5fa6b6ec0d7c42f40d (patch)
tree	37117e41a77f68467ff35852fd9a8222366b4356 /scripts/gdb/linux/utils.py
parent	42427209317d1beac758d5de1dbc89d76615b5e1 (diff)

netfilter: x_tables: fix compat match/target pad out-of-bound write

commit b29c457a6511435960115c0f548c4360d5f4801d upstream. xt_compat_match/target_from_user doesn't check that zeroing the area to start of next rule won't write past end of allocated ruleset blob. Remove this code and zero the entire blob beforehand. Reported-by: syzbot+cfc0247ac173f597aaaa@syzkaller.appspotmail.com Reported-by: Andy Nguyen <theflow@google.com> Fixes: 9fa492cdc160c ("[NETFILTER]: x_tables: simplify compat API") Signed-off-by: Florian Westphal <fw@strlen.de> Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>

Diffstat (limited to 'scripts/gdb/linux/utils.py')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: