]> CyberLeo.Net >> Repos - FreeBSD/FreeBSD.git/commit
projects / FreeBSD / FreeBSD.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: ab62894) | patch
pf: Improve input validation
authorkp <kp@FreeBSD.org>
Sun, 26 Apr 2020 16:16:39 +0000 (16:16 +0000)
committerkp <kp@FreeBSD.org>
Sun, 26 Apr 2020 16:16:39 +0000 (16:16 +0000)
commit4cc49383369b92c6782965203dd7c6f756272115
tree7dde7437a27b30001e2c181f6af2f9aa5a92bc13tree | snapshot
parentab62894faf08552805321737112a3917b42feb28commit | diff
pf: Improve input validation

If we pass an anchor name which doesn't exist pfr_table_count() returns
-1, which leads to an overflow in mallocarray() and thus a panic.

Explicitly check that pfr_table_count() does not return an error.

Reported-by: syzbot+bd09d55d897d63d5f4f4@syzkaller.appspotmail.com
Reviewed by: melifaro
MFC after: 1 week
Differential Revision: https://reviews.freebsd.org/D24539
sys/netpfil/pf/pf_ioctl.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.