Message ID | 1517162542.3715.83.camel@gmail.com |
---|---|
State | Changes Requested |
Delegated to: | Pablo Neira |
Headers | show |
Series | [net] netfilter: xt_recent: do not accept / in table name | expand |
diff --git a/net/netfilter/xt_recent.c b/net/netfilter/xt_recent.c index 245fa350a7a85390e6767c4a0c5862f4213000fe..724f7cf072c1c81a912d007f6f89ea542a42eb0e 100644 --- a/net/netfilter/xt_recent.c +++ b/net/netfilter/xt_recent.c @@ -362,7 +362,8 @@ static int recent_mt_check(const struct xt_mtchk_param *par, return -EINVAL; } if (info->name[0] == '\0' || - strnlen(info->name, XT_RECENT_NAME_LEN) == XT_RECENT_NAME_LEN) + strnlen(info->name, XT_RECENT_NAME_LEN) == XT_RECENT_NAME_LEN || + strchr(info->name, '/')) return -EINVAL; if (ip_pkt_list_tot && info->hit_count < ip_pkt_list_tot)