Displaying 1 result from an estimated 1 matches for "parse_count".
Did you mean:
pause_count
2006 Feb 01
1
[Bug 437] New: restore can segfaults when restoring corrupt policy counters
...on: unspecified
Platform: All
OS/Version: All
Status: NEW
Severity: normal
Priority: P2
Component: iptables-restore
AssignedTo: laforge@netfilter.org
ReportedBy: razzor@kopf-tisch.de
In iptables-restore the return value of parse_counters() is not checked.
So if the sscanf() in parse_counter() fails, wrong ($random or from previous
chain) counters are written to kernel.
Also parse_counter() is called without checking it's first argument.
If it's NULL, the sscanf() will segfault.
diff -uNr iptables-1.3.5.org/ip6tables-r...