Commit 79375bd5 authored by Pablo Neira Ayuso's avatar Pablo Neira Ayuso Committed by openeuler-sync-bot
Browse files

netfilter: nf_tables: release flow rule object from commit path 

stable inclusion
from stable-v5.10.154
commit b2d7a92aff0fbd93c29d2aa6451fb99f050e2c4e
category: bugfix
bugzilla: https://gitee.com/openeuler/kernel/issues/I64YCB

Reference: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?id=b2d7a92aff0fbd93c29d2aa6451fb99f050e2c4e



--------------------------------

[ Upstream commit 26b5934f ]

No need to postpone this to the commit release path, since no packets
are walking over this object, this is accessed from control plane only.
This helped uncovered UAF triggered by races with the netlink notifier.

Fixes: 9dd732e0 ("netfilter: nf_tables: memleak flow rule from commit path")
Reported-by: default avatar <syzbot+8f747f62763bc6c32916@syzkaller.appspotmail.com>
Signed-off-by: default avatarPablo Neira Ayuso <pablo@netfilter.org>
Signed-off-by: default avatarSasha Levin <sashal@kernel.org>
Signed-off-by: default avatarLipeng Sang <sanglipeng1@jd.com>
(cherry picked from commit 81a96034)
parent f03de872
Show whitespace changes
Inline Side-by-side
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please to comment