Searched hist:"71 df14b0" (Results 1 – 2 of 2) sorted by relevance
| /openbmc/linux/net/netfilter/ |
| H A D | nft_bitwise.c | 71df14b0 Mon May 15 05:17:29 CDT 2017 Pablo Neira Ayuso <pablo@netfilter.org> netfilter: nf_tables: missing sanitization in data from userspace
Do not assume userspace always sends us NFT_DATA_VALUE for bitwise and
cmp expressions. Although NFT_DATA_VERDICT does not make any sense, it
is still possible to handcraft a netlink message using this incorrect
data type.
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
71df14b0 Mon May 15 05:17:29 CDT 2017 Pablo Neira Ayuso <pablo@netfilter.org> netfilter: nf_tables: missing sanitization in data from userspace
Do not assume userspace always sends us NFT_DATA_VALUE for bitwise and
cmp expressions. Although NFT_DATA_VERDICT does not make any sense, it
is still possible to handcraft a netlink message using this incorrect
data type.
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
|
| H A D | nft_cmp.c | 71df14b0 Mon May 15 05:17:29 CDT 2017 Pablo Neira Ayuso <pablo@netfilter.org> netfilter: nf_tables: missing sanitization in data from userspace
Do not assume userspace always sends us NFT_DATA_VALUE for bitwise and
cmp expressions. Although NFT_DATA_VERDICT does not make any sense, it
is still possible to handcraft a netlink message using this incorrect
data type.
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
71df14b0 Mon May 15 05:17:29 CDT 2017 Pablo Neira Ayuso <pablo@netfilter.org> netfilter: nf_tables: missing sanitization in data from userspace
Do not assume userspace always sends us NFT_DATA_VALUE for bitwise and
cmp expressions. Although NFT_DATA_VERDICT does not make any sense, it
is still possible to handcraft a netlink message using this incorrect
data type.
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
|