ipfilter: Fix possible overrunHEADmain

The destination buffer is FR_GROUPLEN (16 bytes) in length. When
gname is created, the userspace utilities correctly use FR_GROUPLEN
as the buffer length. The kernel should also limit its copy operation to
FR_GROUPLEN bytes to avoid any user written code from exploiting this
vulnerability.

Reported by:	Ilja Van Sprundel <ivansprundel@ioactive.com>
MFC after:	1 week

0 files changed, 0 insertions, 0 deletions