subject:"Re\: \[PATCH V7\] netfilter\: h323\: avoid potential attack"

Re: Re: [PATCH V7] netfilter: h323: avoid potential attack

2016-03-19 Thread Zhouyi Zhou

Thanks Pablo for reviewing > From: "Pablo Neira Ayuso" > Sent Time: Saturday, March 12, 2016 > To: "Zhouyi Zhou" > On Sun, Feb 21, 2016 at 12:03:59AM +0800, Zhouyi Zhou wrote: > > I think hackers chould build a malicious h323 packet to overflow (iph->ihl * 4 + th->doff * 4); > You cannot trust t

Re: [PATCH V7] netfilter: h323: avoid potential attack

2016-03-12 Thread Pablo Neira Ayuso

On Sun, Feb 21, 2016 at 12:03:59AM +0800, Zhouyi Zhou wrote: > I think hackers chould build a malicious h323 packet to overflow > the pointer p which will panic during the memcpy(addr, p, len) > For example, he may fabricate a very large taddr->ipAddress.ip in > function get_h225_addr. > > To avoi