]> git.hungrycats.org Git - linux/commit
projects / linux / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 4909a7b) | patch
netfilter: expect: fix crash when putting uninited expectation
authorFlorian Westphal <fw@strlen.de>
Mon, 10 Jul 2017 11:53:53 +0000 (13:53 +0200)
committerGreg Kroah-Hartman <gregkh@linuxfoundation.org>
Wed, 30 Aug 2017 08:26:40 +0000 (10:26 +0200)
commitf5263887165a2f9bad884239e25df00b46091b50
treee8c2a2804ea75c11b501d5bb6cfa665a09caa3fbtree | snapshot
parent4909a7b79965764bd9a1f4c4f9f5000f1e57683acommit | diff
netfilter: expect: fix crash when putting uninited expectation

commit 36ac344e16e04e3e55e8fed7446095a6458c64e6 upstream.

We crash in __nf_ct_expect_check, it calls nf_ct_remove_expect on the
uninitialised expectation instead of existing one, so del_timer chokes
on random memory address.

Fixes: ec0e3f01114ad32711243 ("netfilter: nf_ct_expect: Add nf_ct_remove_expect()")
Reported-by: Sergey Kvachonok <ravenexp@gmail.com>
Tested-by: Sergey Kvachonok <ravenexp@gmail.com>
Cc: Gao Feng <fgao@ikuai8.com>
Signed-off-by: Florian Westphal <fw@strlen.de>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
net/netfilter/nf_conntrack_expect.c diff | blob | history
Linux kernels and configurations used by Zygo.