Description: "A buffer overflow in iptables-restore in netfilter iptables 1.8.2 allows an attacker to (at least) crash the program or potentially gain code execution via a specially crafted iptables-save file. This is related to add_param_to_argv in xshared.c." Unclear if this affects previous series, but it is possible.
(In reply to sam_c (Security Padawan) from comment #0) > Unclear if this affects previous series, but it is possible. Patch (as in URL): https://git.netfilter.org/iptables/commit/iptables/xshared.c?id=2ae1099a42e6a0f06de305ca13a842ac83d4683e I examined the tree [0] for e.g. 1.6.1 (current stable) and it's not there. The consolidation occurred in this [1] commit (2018-08-04) which landed in 1.8.0. So seems to just be 1.8.0 [0] https://git.netfilter.org/iptables/tree/?h=v1.6.1&id=7df66f1c13563cfbab75246b009ce36f69ee4487 [1] https://git.netfilter.org/iptables/commit/iptables/xshared.c?id=a2ed880a19d0861342b3515721804b18d698bf44
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=1a24e71a8548da66f9958afeae8478d0ef67e167 commit 1a24e71a8548da66f9958afeae8478d0ef67e167 Author: Thomas Deutschmann <whissi@gentoo.org> AuthorDate: 2020-03-02 18:24:11 +0000 Commit: Thomas Deutschmann <whissi@gentoo.org> CommitDate: 2020-03-02 18:24:21 +0000 net-firewall/iptables: security cleanup Bug: https://bugs.gentoo.org/711338 Package-Manager: Portage-2.3.90, Repoman-2.3.20 Signed-off-by: Thomas Deutschmann <whissi@gentoo.org> net-firewall/iptables/Manifest | 1 - net-firewall/iptables/iptables-1.8.2-r2.ebuild | 130 ------------------------- 2 files changed, 131 deletions(-)
Repository is clean, all done.