mirrors/linux-stable
1
0
Fork 0
mirror of https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git synced 2024-10-03 23:58:05 +00:00
Code Issues Releases Wiki Activity
linux-stable/net
History
Florian Westphal 83ff16e449 netfilter: nf_tables: deactivate catchall elements in next generation 
[ Upstream commit 90e5b3462e ]

When flushing, individual set elements are disabled in the next
generation via the ->flush callback.

Catchall elements are not disabled.  This is incorrect and may lead to
double-deactivations of catchall elements which then results in memory
leaks:

WARNING: CPU: 1 PID: 3300 at include/net/netfilter/nf_tables.h:1172 nft_map_deactivate+0x549/0x730
CPU: 1 PID: 3300 Comm: nft Not tainted 6.5.0-rc5+ #60
RIP: 0010:nft_map_deactivate+0x549/0x730
 [..]
 ? nft_map_deactivate+0x549/0x730
 nf_tables_delset+0xb66/0xeb0

(the warn is due to nft_use_dec() detecting underflow).

Fixes: aaa31047a6 ("netfilter: nftables: add catch-all set element support")
Reported-by: lonial con <kongln9170@gmail.com>
Signed-off-by: Florian Westphal <fw@strlen.de>
Signed-off-by: Sasha Levin <sashal@kernel.org>
2023-08-23 17:32:45 +02:00
..
6lowpan
9p Including fixes from netfilter. 2023-05-05 19:12:01 -07:00
802
8021q vlan: fix a potential uninit-value in vlan_dev_hard_start_xmit() 2023-05-17 12:55:39 +01:00
appletalk
atm atm: hide unused procfs functions 2023-05-17 21:27:30 -07:00
ax25
batman-adv batman-adv: Broken sync while rescheduling delayed work 2023-05-26 23:14:49 +02:00
bluetooth Bluetooth: MGMT: Use correct address for memcpy() 2023-08-23 17:32:34 +02:00
bpf bpf: add test_run support for netfilter program type 2023-04-21 11:34:50 -07:00
bpfilter
bridge bridge: Add extack warning when enabling STP in netns. 2023-07-27 08:56:55 +02:00
caif
can net: annotate data-races around sk->sk_mark 2023-08-11 12:14:13 +02:00
ceph libceph: fix potential hang in ceph_osdc_notify() 2023-08-11 12:14:19 +02:00
core bpf, sockmap: Fix bug that strp_done cannot be called 2023-08-16 18:32:25 +02:00
dcb net: dcb: choose correct policy to parse DCB_ATTR_BCN 2023-08-11 12:14:16 +02:00
dccp dccp: fix data-race around dp->dccps_mss_cache 2023-08-16 18:32:26 +02:00
devlink devlink: report devlink_port_type_warn source device 2023-07-27 08:56:51 +02:00
dns_resolver
dsa net: dsa: sja1105: always enable the send_meta options 2023-07-19 16:36:48 +02:00
ethernet
ethtool ethtool: Fix uninitialized number of lanes 2023-05-03 09:13:20 +01:00
handshake net/handshake: remove fput() that causes use-after-free 2023-06-14 22:26:37 -07:00
hsr
ieee802154 ieee802154: Replace strlcpy with strscpy 2023-06-16 22:14:24 +02:00
ife
ipv4 ip_vti: fix potential slab-use-after-free in decode_session6 2023-08-23 17:32:43 +02:00
ipv6 ip6_vti: fix slab-use-after-free in decode_session6 2023-08-23 17:32:42 +02:00
iucv
kcm
key net: af_key: fix sadb_x_filter validation 2023-08-23 17:32:42 +02:00
l2tp net: annotate data-races around sk->sk_mark 2023-08-11 12:14:13 +02:00
l3mdev
lapb
llc llc: Don't drop packet from non-root netns. 2023-07-27 08:57:01 +02:00
mac80211 net: move gso declarations and functions to their own files 2023-08-11 12:14:12 +02:00
mac802154 Merge tag 'ieee802154-for-net-2023-06-19' of git://git.kernel.org/pub/scm/linux/kernel/git/wpan/wpan 2023-06-20 09:32:33 +01:00
mctp
mpls net: move gso declarations and functions to their own files 2023-08-11 12:14:12 +02:00
mptcp mptcp: fix the incorrect judgment for msk->cb_flags 2023-08-16 18:32:25 +02:00
ncsi net/ncsi: change from ndo_set_mac_address to dev_set_mac_address 2023-07-23 13:54:17 +02:00
netfilter netfilter: nf_tables: deactivate catchall elements in next generation 2023-08-23 17:32:45 +02:00
netlabel netlabel: fix shift wrapping bug in netlbl_catmap_setlong() 2023-06-10 19:54:06 +01:00
netlink netlink: Add __sock_i_ino() for __netlink_diag_dump(). 2023-07-19 16:35:38 +02:00
netrom netrom: fix info-leak in nr_write_internal() 2023-05-25 21:02:29 -07:00
nfc net: nfc: Fix use-after-free caused by nfc_llcp_find_local 2023-07-19 16:35:36 +02:00
nsh net: move gso declarations and functions to their own files 2023-08-11 12:14:12 +02:00
openvswitch net: move gso declarations and functions to their own files 2023-08-11 12:14:12 +02:00
packet net/packet: annotate data-races around tp->status 2023-08-16 18:32:25 +02:00
phonet
psample
qrtr net: qrtr: Fix an uninit variable access bug in qrtr_tx_resume() 2023-04-13 09:35:30 +02:00
rds
rfkill net: rfkill-gpio: Add explicit include for of.h 2023-04-06 20:36:27 +02:00
rose
rxrpc rxrpc: Truncate UTS_RELEASE for rxrpc version 2023-05-30 10:01:06 +02:00
sched net/sched: cls_route: No longer copy tcf_result on update to avoid use-after-free 2023-08-11 12:14:15 +02:00
sctp net: move gso declarations and functions to their own files 2023-08-11 12:14:12 +02:00
smc net/smc: Use correct buffer sizes when switching between TCP and SMC 2023-08-16 18:32:25 +02:00
strparser
sunrpc SUNRPC: Fix UAF in svc_tcp_listen_data_ready() 2023-07-19 16:36:22 +02:00
switchdev
tipc tipc: stop tipc crypto on failure in tipc_node_create 2023-08-03 10:25:54 +02:00
tls net: tls: avoid discarding data on record close 2023-08-16 18:32:27 +02:00
unix net: add missing data-race annotations around sk->sk_peek_off 2023-08-11 12:14:13 +02:00
vmw_vsock bpf, sockmap: Pass skb ownership through read_skb 2023-05-23 16:09:47 +02:00
wireless wifi: nl80211: fix integer overflow in nl80211_parse_mbssid_elems() 2023-08-16 18:32:16 +02:00
x25
xdp xsk: fix refcount underflow in error path 2023-08-16 18:32:26 +02:00
xfrm xfrm: don't skip free of empty state in acquire policy 2023-08-23 17:32:43 +02:00
compat.c net/compat: Update msg_control_is_user when setting a kernel pointer 2023-04-14 11:09:27 +01:00
devres.c
Kconfig net/handshake: Add Kunit tests for the handshake consumer API 2023-04-19 18:48:48 -07:00
Kconfig.debug
Makefile net/handshake: Create a NETLINK service for handling handshake requests 2023-04-19 18:48:48 -07:00
socket.c net: annotate sk->sk_err write from do_recvmmsg() 2023-05-10 09:58:29 +01:00
sysctl_net.c