]> granicus.if.org Git - ipset/commit
projects / ipset / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: b1b217c) | patch
Fix wraparound bug introduced in commit 48596a8ddc46
authorJozsef Kadlecsik <kadlec@blackhole.kfki.hu>
Fri, 12 Jan 2018 09:36:25 +0000 (10:36 +0100)
committerJozsef Kadlecsik <kadlec@blackhole.kfki.hu>
Fri, 12 Jan 2018 09:36:25 +0000 (10:36 +0100)
commit82403f9c229f093e973888e778646b4206a1469f
tree6d8fb3cdfdc9aae1a0d8c0e953ebac575ae2d22atree | snapshot
parentb1b217c885e1ad36d0b0a5a83fc1900e3a6d71edcommit | diff
Fix wraparound bug introduced in commit 48596a8ddc46

The patch "netfilter: ipset: Fix adding an IPv4 range containing
more than 2^31 addresses" introduced a wraparound bug, which could
lead to memory exhaustion when adding an x.x.x.x-255.255.255.255
range to any hash:*net* types.

Fixes Netfilter's bugzilla id #1212, reported by Thomas Schwark.
kernel/net/netfilter/ipset/ip_set_hash_ipportnet.c diff | blob | history
kernel/net/netfilter/ipset/ip_set_hash_net.c diff | blob | history
kernel/net/netfilter/ipset/ip_set_hash_netiface.c diff | blob | history
kernel/net/netfilter/ipset/ip_set_hash_netnet.c diff | blob | history
kernel/net/netfilter/ipset/ip_set_hash_netport.c diff | blob | history
kernel/net/netfilter/ipset/ip_set_hash_netportnet.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.