Chen Gang 4f36ea6eed netfilter: ipt_ULOG: fix non-null terminated string in the nf_log path ... If nf_log uses ipt_ULOG as logging output, we can deliver non-null terminated strings to user-space since the maximum length of the prefix that is passed by nf_log is NF_LOG_PREFIXLEN but pm->prefix is 32 bytes long (ULOG_PREFIX_LEN). This is actually happening already from nf_conntrack_tcp if ipt_ULOG is used, since it is passing strings longer than 32 bytes. Signed-off-by: Chen Gang <gang.chen@asianux.com> Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>		2013-05-23 14:25:40 +02:00
..
Kconfig	netfilter: xt_rpfilter: depend on raw or mangle table	2013-04-19 00:22:55 +02:00
Makefile	netfilter: combine ipt_REDIRECT and ip6t_REDIRECT	2012-09-21 12:12:05 +02:00
arp_tables.c	netfilter: add my copyright statements	2013-04-18 20:27:55 +02:00
arpt_mangle.c	netfilter: arpt_mangle: fix return values of checkentry	2011-02-01 16:03:46 +01:00
arptable_filter.c	ipv4: netfilter: use PTR_RET instead of IS_ERR + PTR_ERR	2013-03-15 11:02:14 +01:00
ip_tables.c	netfilter: add my copyright statements	2013-04-18 20:27:55 +02:00
ipt_CLUSTERIP.c	proc: Supply a function to remove a proc entry by PDE	2013-05-01 17:29:46 -04:00
ipt_ECN.c	netfilter: xtables: substitute temporary defines by final name	2010-05-11 18:31:17 +02:00
ipt_MASQUERADE.c	netfilter: ip6tables: add MASQUERADE target	2012-08-30 03:00:18 +02:00
ipt_REJECT.c	netfilter: ip[6]t_REJECT: fix wrong transport header pointer in TCP reset	2012-12-16 23:27:35 +01:00
ipt_ULOG.c	netfilter: ipt_ULOG: fix non-null terminated string in the nf_log path	2013-05-23 14:25:40 +02:00
ipt_ah.c	netfilter: xtables: change hotdrop pointer to direct modification	2010-05-11 18:35:27 +02:00
ipt_rpfilter.c	netfilter: xt_rpfilter: skip locally generated broadcast/multicast, too	2013-04-19 00:11:59 +02:00
iptable_filter.c	netfilter: remove unnecessary goto statement for error recovery	2012-08-22 19:17:38 +02:00
iptable_mangle.c	netfilter: ipv4: propagate routing errors from ip_route_me_harder()	2013-04-08 12:34:00 +02:00
iptable_nat.c	netfilter: nat: propagate errors from xfrm_me_harder()	2013-04-08 12:34:01 +02:00
iptable_raw.c	netfilter: remove unnecessary goto statement for error recovery	2012-08-22 19:17:38 +02:00
iptable_security.c	netfilter: PTR_RET can be used	2012-08-14 02:31:47 +02:00
nf_conntrack_l3proto_ipv4.c	netfilter: add my copyright statements	2013-04-18 20:27:55 +02:00
nf_conntrack_l3proto_ipv4_compat.c	netfilter: add my copyright statements	2013-04-18 20:27:55 +02:00
nf_conntrack_proto_icmp.c	netfilter: add my copyright statements	2013-04-18 20:27:55 +02:00
nf_defrag_ipv4.c	netfilter: ipv4, defrag: switch hook PFs to nfproto	2012-06-07 14:58:42 +02:00
nf_nat_h323.c	netfilter: add my copyright statements	2013-04-18 20:27:55 +02:00
nf_nat_l3proto_ipv4.c	netfilter: add protocol independent NAT core	2012-08-30 03:00:14 +02:00
nf_nat_pptp.c	netfilter: add my copyright statements	2013-04-18 20:27:55 +02:00
nf_nat_proto_gre.c	netfilter: add my copyright statements	2013-04-18 20:27:55 +02:00
nf_nat_proto_icmp.c	netfilter: add protocol independent NAT core	2012-08-30 03:00:14 +02:00
nf_nat_snmp_basic.c	netfilter: add my copyright statements	2013-04-18 20:27:55 +02:00