git.openpandora.org / pandora-kernel.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: a661b43) | patch
netfilter: xt_TCPMSS: fix handling of malformed TCP header and options
authorPablo Neira Ayuso <pablo@netfilter.org>
Thu, 25 Jul 2013 08:37:49 +0000 (10:37 +0200)
committerPablo Neira Ayuso <pablo@netfilter.org>
Thu, 1 Aug 2013 09:42:53 +0000 (11:42 +0200)
commit71ffe9c77dd7a2b62207953091efa8dafec958dd
treed0251ec9b294378915562e50a62ae095616d5430tree | snapshot
parenta661b43fd047ef501da43a19975415f861c7c3dbcommit | diff
netfilter: xt_TCPMSS: fix handling of malformed TCP header and options

Make sure the packet has enough room for the TCP header and
that it is not malformed.

While at it, store tcph->doff*4 in a variable, as it is used
several times.

This patch also fixes a possible off by one in case of malformed
TCP options.

Reported-by: Julian Anastasov <ja@ssi.bg>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
net/netfilter/xt_TCPMSS.c diff | blob | history
Pandora Kernel Repository