32c72165db
The bitmap allocation did not use full unsigned long sizes when calculating the required size and that was triggered by KASAN as slab-out-of-bounds read in several places. The patch fixes all of them. Reported-by: syzbot+fabca5cbf5e54f3fe2de@syzkaller.appspotmail.com Reported-by: syzbot+827ced406c9a1d9570ed@syzkaller.appspotmail.com Reported-by: syzbot+190d63957b22ef673ea5@syzkaller.appspotmail.com Reported-by: syzbot+dfccdb2bdb4a12ad425e@syzkaller.appspotmail.com Reported-by: syzbot+df0d0f5895ef1f41a65b@syzkaller.appspotmail.com Reported-by: syzbot+b08bd19bb37513357fd4@syzkaller.appspotmail.com Reported-by: syzbot+53cdd0ec0bbabd53370a@syzkaller.appspotmail.com Signed-off-by: Jozsef Kadlecsik <kadlec@netfilter.org> Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org> |
||
---|---|---|
.. | ||
ip_set_bitmap_gen.h | ||
ip_set_bitmap_ip.c | ||
ip_set_bitmap_ipmac.c | ||
ip_set_bitmap_port.c | ||
ip_set_core.c | ||
ip_set_getport.c | ||
ip_set_hash_gen.h | ||
ip_set_hash_ip.c | ||
ip_set_hash_ipmac.c | ||
ip_set_hash_ipmark.c | ||
ip_set_hash_ipport.c | ||
ip_set_hash_ipportip.c | ||
ip_set_hash_ipportnet.c | ||
ip_set_hash_mac.c | ||
ip_set_hash_net.c | ||
ip_set_hash_netiface.c | ||
ip_set_hash_netnet.c | ||
ip_set_hash_netport.c | ||
ip_set_hash_netportnet.c | ||
ip_set_list_set.c | ||
Kconfig | ||
Makefile | ||
pfxlen.c |