projects / linux-2.6-microblaze.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: cef9ed8) | patch
netfilter: xt_socket: fix a stack corruption bug
authorEric Dumazet <edumazet@google.com>
Mon, 16 Feb 2015 03:03:45 +0000 (19:03 -0800)
committerPablo Neira Ayuso <pablo@netfilter.org>
Mon, 16 Feb 2015 16:00:48 +0000 (17:00 +0100)
commit78296c97ca1fd3b104f12e1f1fbc06c46635990b
treebb6b737655d6412e4fb49c0a746f743691e81a24tree | snapshot
parentcef9ed86ed62eeffcd017882278bbece32001f86commit | diff
netfilter: xt_socket: fix a stack corruption bug

As soon as extract_icmp6_fields() returns, its local storage (automatic
variables) is deallocated and can be overwritten.

Lets add an additional parameter to make sure storage is valid long
enough.

While we are at it, adds some const qualifiers.

Signed-off-by: Eric Dumazet <edumazet@google.com>
Fixes: b64c9256a9b76 ("tproxy: added IPv6 support to the socket match")
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
net/netfilter/xt_socket.c diff | blob | history
MicroBlaze GIT Repository