projects / cascardo / linux.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 472681d) | patch
netfilter: nfnetlink_acct: validate NFACCT_FILTER parameters
authorPhil Turnbull <phil.turnbull@oracle.com>
Wed, 24 Feb 2016 20:34:43 +0000 (15:34 -0500)
committerPablo Neira Ayuso <pablo@netfilter.org>
Mon, 29 Feb 2016 12:27:21 +0000 (13:27 +0100)
commit017b1b6d28c479f1ad9a7a41f775545a3e1cba35
tree595556370e0d68c347acfa0b8560e16623d57de8tree | snapshot
parent472681d57a5dde7c6d16b05469be57f1c4ed9d99commit | diff
netfilter: nfnetlink_acct: validate NFACCT_FILTER parameters

nfacct_filter_alloc doesn't validate the NFACCT_FILTER_MASK and
NFACCT_FILTER_VALUE parameters which can trigger a NULL pointer
dereference. CAP_NET_ADMIN is required to trigger the bug.

Signed-off-by: Phil Turnbull <phil.turnbull@oracle.com>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
net/netfilter/nfnetlink_acct.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.