netfilter: xt_TCPMSS: add more sanity tests on tcph->doff - xavi/android_kernel_m2note - Unnamed repository; edit this file 'description' to name the repository.

diff options

author	Eric Dumazet <edumazet@google.com>	2017-04-03 10:55:11 -0700
committer	Moyster <oysterized@gmail.com>	2017-11-06 15:29:31 +0100
commit	86fdf06294d0cbdbb874c8702be242acfe199e93 (patch)
tree	b4a5551197b217e396e44e00504a1e7a100c9542 /net/ipv4
parent	329efc6a8f4ac3ad0ca2d3ac8424cda2a642ba51 (diff)

netfilter: xt_TCPMSS: add more sanity tests on tcph->doff

commit 2638fd0f92d4397884fd991d8f4925cb3f081901 upstream. Denys provided an awesome KASAN report pointing to an use after free in xt_TCPMSS I have provided three patches to fix this issue, either in xt_TCPMSS or in xt_tcpudp.c. It seems xt_TCPMSS patch has the smallest possible impact. Signed-off-by: Eric Dumazet <edumazet@google.com> Reported-by: Denys Fedoryshchenko <nuclearcat@nuclearcat.com> Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org> [wt: adjust context] Signed-off-by: Willy Tarreau <w@1wt.eu>

Diffstat (limited to 'net/ipv4')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: