]> git.proxmox.com Git - mirror_ubuntu-focal-kernel.git/commit
projects / mirror_ubuntu-focal-kernel.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: e6ddc94) | patch
netfilter: nf_tables: initialize registers in nft_do_chain()
authorPablo Neira Ayuso <pablo@netfilter.org>
Thu, 17 Mar 2022 11:04:42 +0000 (12:04 +0100)
committerStefan Bader <stefan.bader@canonical.com>
Thu, 14 Apr 2022 09:31:53 +0000 (11:31 +0200)
commitf2844642184dd9d31c5bcf80e2e0d05a1c40a31b
treec64f87dd01a93fe7db1fdcc8412c305a2e4bfcfftree
parente6ddc94771e69fc23ef58e6e5b21457c63188762commit | diff
netfilter: nf_tables: initialize registers in nft_do_chain()

Initialize registers to avoid stack leak into userspace.

Fixes: 96518518cc41 ("netfilter: add nftables")
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
CVE-2022-1016
(cherry picked from commit 4c905f6740a365464e91467aa50916555b28213d)
Signed-off-by: Thadeu Lima de Souza Cascardo <cascardo@canonical.com>
Acked-by: Stefan Bader <stefan.bader@canonical.com>
Acked-by: Tim Gardner <tim.gardner@canonical.com>
Signed-off-by: Stefan Bader <stefan.bader@canonical.com>
net/netfilter/nf_tables_core.c diff | blob | blame | history
Ubuntu Focal Linux kernel mirror