Message ID | 1458424294-8678-4-git-send-email-fw@strlen.de |
---|---|
State | Changes Requested |
Delegated to: | Pablo Neira |
Headers | show |
diff --git a/net/netfilter/x_tables.c b/net/netfilter/x_tables.c index 582c9cf..3740717 100644 --- a/net/netfilter/x_tables.c +++ b/net/netfilter/x_tables.c @@ -659,7 +659,7 @@ struct xt_table_info *xt_alloc_table_info(unsigned int size) struct xt_table_info *info = NULL; size_t sz = sizeof(*info) + size; - if (sz < sizeof(*info)) + if (sz < sizeof(*info) || sz > UINT_MAX) return NULL; /* Pedantry: prevent them from hitting BUG() in vmalloc.c --RR */
We track size in unsigned int everywhere, so better don't even bother trying to alloc this size. Signed-off-by: Florian Westphal <fw@strlen.de> --- net/netfilter/x_tables.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-)