Commit d9c6a251 authored by Pablo Neira Ayuso's avatar Pablo Neira Ayuso Committed by Yongqiang Liu
Browse files

netfilter: nf_tables: initialize registers in nft_do_chain() 

mainline inclusion
from mainline-v5.18-rc1
commit 4c905f67
category: bugfix
bugzilla: https://gitee.com/src-openeuler/kernel/issues/I50WAZ


CVE: CVE-2022-1016

-------------------------------------------------

Initialize registers to avoid stack leak into userspace.

Fixes: 96518518 ("netfilter: add nftables")
Signed-off-by: default avatarPablo Neira Ayuso <pablo@netfilter.org>

conflict:
	net/netfilter/nf_tables_core.c

Signed-off-by: default avatarLu Wei <luwei32@huawei.com>
Reviewed-by: default avatarWei Yongjun <weiyongjun1@huawei.com>
Reviewed-by: default avatarXiu Jianfeng <xiujianfeng@huawei.com>
Signed-off-by: default avatarYongqiang Liu <liuyongqiang13@huawei.com>
parent d138b107
Show whitespace changes
Inline Side-by-side
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please to comment