Commit 81a96034 authored by Pablo Neira Ayuso's avatar Pablo Neira Ayuso Committed by Lipeng Sang
Browse files

netfilter: nf_tables: release flow rule object from commit path 

stable inclusion
from stable-v5.10.154
commit b2d7a92aff0fbd93c29d2aa6451fb99f050e2c4e
category: bugfix
bugzilla: https://gitee.com/openeuler/kernel/issues/I64YCB

Reference: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?id=b2d7a92aff0fbd93c29d2aa6451fb99f050e2c4e



--------------------------------

[ Upstream commit 26b5934f ]

No need to postpone this to the commit release path, since no packets
are walking over this object, this is accessed from control plane only.
This helped uncovered UAF triggered by races with the netlink notifier.

Fixes: 9dd732e0 ("netfilter: nf_tables: memleak flow rule from commit path")
Reported-by: default avatar <syzbot+8f747f62763bc6c32916@syzkaller.appspotmail.com>
Signed-off-by: default avatarPablo Neira Ayuso <pablo@netfilter.org>
Signed-off-by: default avatarSasha Levin <sashal@kernel.org>
Signed-off-by: default avatarLipeng Sang <sanglipeng1@jd.com>
parent f01d2806
Show whitespace changes
Inline Side-by-side
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please to comment