]> git.baikalelectronics.ru Git - kernel.git/commit
projects / kernel.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 826b34d) | patch
netfilter: ipset: fix netiface set name overflow
authorFlorian Westphal <fw@strlen.de>
Thu, 22 Nov 2012 01:32:45 +0000 (01:32 +0000)
committerPablo Neira Ayuso <pablo@netfilter.org>
Sat, 24 Nov 2012 22:48:23 +0000 (23:48 +0100)
commit9cde0a316e2d990895383d26be4effec0acf2d93
treef92561b8e68af4f243882f69d03056d73db7734etree | snapshot
parent826b34d51cf5e3b3ffa53dbf86b541e49e5c1c8dcommit | diff
netfilter: ipset: fix netiface set name overflow

attribute is copied to IFNAMSIZ-size stack variable,
but IFNAMSIZ is smaller than IPSET_MAXNAMELEN.

Fortunately nfnetlink needs CAP_NET_ADMIN.

Signed-off-by: Florian Westphal <fw@strlen.de>
Acked-by: Jozsef Kadlecsik <kadlec@blackhole.kfki.hu>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
net/netfilter/ipset/ip_set_hash_netiface.c diff | blob | history
Linux Kernel Source Tree.