git.proxmox.com Git - mirror_ubuntu-zesty-kernel.git/commit

author	Florian Westphal <fw@strlen.de>
	Wed, 13 Jul 2016 10:44:54 +0000 (11:44 +0100)
committer	Kamal Mostafa <kamal@canonical.com>
	Fri, 15 Jul 2016 20:08:53 +0000 (13:08 -0700)
commit	e8118014845adf098a333f8f2efcd1771b32f4c1
tree	5b35b867b9667ceec736bc11a300f9dd94c9478b	tree
parent	fb839c75e96dbb7b84bea1835b2e9e5be0d7074f	commit \| diff

netfilter: x_tables: check for size overflow

Ben Hawkes says:
integer overflow in xt_alloc_table_info, which on 32-bit systems can
lead to small structure allocation and a copy_from_user based heap
corruption.

Reported-by: Ben Hawkes <hawkes@google.com>
Signed-off-by: Florian Westphal <fw@strlen.de>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
(cherry picked from commit d157bd761585605b7882935ffb86286919f62ea1)
CVE-2016-3135
BugLink: https://bugs.launchpad.net/bugs/1555353
Signed-off-by: Luis Henriques <luis.henriques@canonical.com>
Acked-by: Tim Gardner <tim.gardner@canonical.com>
Signed-off-by: Kamal Mostafa <kamal@canonical.com>