| Message ID | 1459330475-2220-1-git-send-email-kadlec@blackhole.kfki.hu |
|---|---|
| State | Accepted |
| Delegated to: | Pablo Neira |
| Headers | show
Return-Path: <netfilter-devel-owner@vger.kernel.org> X-Original-To: incoming@patchwork.ozlabs.org Delivered-To: patchwork-incoming@bilbo.ozlabs.org Received: from vger.kernel.org (vger.kernel.org [209.132.180.67]) by ozlabs.org (Postfix) with ESMTP id 3qZjBm13WMz9s6r for <incoming@patchwork.ozlabs.org>; Wed, 30 Mar 2016 20:33:52 +1100 (AEDT) Authentication-Results: ozlabs.org; dkim=fail reason="signature verification failed" (1024-bit key; unprotected) header.d=blackhole.kfki.hu header.i=@blackhole.kfki.hu header.b=MfP+DMjZ; dkim-atps=neutral Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1751270AbcC3Jdo (ORCPT <rfc822;incoming@patchwork.ozlabs.org>); Wed, 30 Mar 2016 05:33:44 -0400 Received: from smtp-in.kfki.hu ([148.6.0.25]:44828 "EHLO smtp0.kfki.hu" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1750854AbcC3Jdn (ORCPT <rfc822; netfilter-devel@vger.kernel.org>); Wed, 30 Mar 2016 05:33:43 -0400 Received: from localhost (localhost [127.0.0.1]) by smtp0.kfki.hu (Postfix) with ESMTP id E121F67400E5; Wed, 30 Mar 2016 11:33:38 +0200 (CEST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= blackhole.kfki.hu; h=x-mailer:message-id:date:date:from:from :received:received:received; s=20151130; t=1459330417; x= 1461144818; bh=U8NYPNNt5kOdnQHR8oDQmvGGb1GfwoX9Ew7atMCqlXI=; b=M fP+DMjZHlRA7AtLw73PmaL+xcp93OeQiBoMjfVY9Fe2S5U7uCvpqKTQi/fk3rG7G zndvplXx2SRriW4AMWgGts1iSSRfKE1JV+xJGesaPWmO/T0H6gSRN8jZ+GLSC5sz 7qua2a6uZcEpeuVfoT2Jp7bhjIxcOBt8Ucvajfpz8w= X-Virus-Scanned: Debian amavisd-new at smtp0.kfki.hu Received: from smtp0.kfki.hu ([127.0.0.1]) by localhost (smtp0.kfki.hu [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id alh8w12sTd9t; Wed, 30 Mar 2016 11:33:37 +0200 (CEST) Received: from blackhole.kfki.hu (blackhole.kfki.hu [148.6.0.114]) by smtp0.kfki.hu (Postfix) with ESMTP id CE3C767400CB; Wed, 30 Mar 2016 11:33:36 +0200 (CEST) Received: by blackhole.kfki.hu (Postfix, from userid 1000) id 8DAD021767; Wed, 30 Mar 2016 11:34:35 +0200 (CEST) From: Jozsef Kadlecsik <kadlec@blackhole.kfki.hu> To: netfilter-devel@vger.kernel.org Cc: Pablo Neira Ayuso <pablo@netfilter.org> Subject: [PATCH 0/1] netfilter TCP conntrack option parser fix Date: Wed, 30 Mar 2016 11:34:34 +0200 Message-Id: <1459330475-2220-1-git-send-email-kadlec@blackhole.kfki.hu> X-Mailer: git-send-email 1.8.5.1 Sender: netfilter-devel-owner@vger.kernel.org Precedence: bulk List-ID: <netfilter-devel.vger.kernel.org> X-Mailing-List: netfilter-devel@vger.kernel.org |
Hi Pablo, Please consider applying the next patch for the stable branches. It fixes a one byte read after the buffer issue discovered by Baozeng Ding. The following changes since commit 29421198c3a860092e27c2ad8499dfe603398817: netfilter: ipv4: fix NULL dereference (2016-03-28 17:59:29 +0200) are available in the git repository at: git://blackhole.kfki.hu/nf master for you to fetch changes up to becfb96a8663e3884d78c23ab747df3fe4e1e50d: net: netfilter: Fix stack out of bounds when parsing TCP options (2016-03-29 11:44:13 +0200) ---------------------------------------------------------------- Jozsef Kadlecsik (1): net: netfilter: Fix stack out of bounds when parsing TCP options net/netfilter/nf_conntrack_proto_tcp.c | 4 ++++ 1 file changed, 4 insertions(+) -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html