]> git.baikalelectronics.ru Git - kernel.git/commit
projects / kernel.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 8a351bf) | patch
netfilter: fix use-after-free in NF_HOOK_LIST
authorEdward Cree <ecree@solarflare.com>
Mon, 9 Jul 2018 17:10:02 +0000 (18:10 +0100)
committerDavid S. Miller <davem@davemloft.net>
Mon, 9 Jul 2018 21:55:53 +0000 (14:55 -0700)
commitf095b16772a598d8b93ef621a98b1cd51a6da9c5
tree0e2468ae6bb598bdba17d3679d74c9b00a8034b6tree | snapshot
parent8a351bf4c2135d5850b9b186a6539939f26582b3commit | diff
netfilter: fix use-after-free in NF_HOOK_LIST

nf_hook() can free the skb, so we need to remove it from the list before
 calling, and add passed skbs to a sublist afterwards.

Fixes: f2f9ed954c20 ("net: ipv4: listified version of ip_rcv")
Reported-by: Dan Carpenter <dan.carpenter@oracle.com>
Signed-off-by: Edward Cree <ecree@solarflare.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
include/linux/netfilter.h diff | blob | history
Linux Kernel Source Tree.