APPLIED: [SRU][F:linux-bluefield][PATCH v1 0/3] Fix nft_do_chain crash when doing DDOS attack
Bartlomiej Zolnierkiewicz
bartlomiej.zolnierkiewicz at canonical.com
Wed Feb 8 13:26:30 UTC 2023
Applied to focal:linux-bluefield/master-next. Thanks.
--
Best regards,
Bartlomiej
On Tue, Feb 7, 2023 at 8:36 PM Bodong Wang <bodong at nvidia.com> wrote:
>
> When doing DDOS attack on port 22, there is deference of an uninitialized
> pointer from nf_tables.
>
> The patches addressed the uninitialized pointers.
>
> v0->v1:
> Add the upstream sha for 2nd patch
>
> Pablo Neira Ayuso (3):
> netfilter: nf_tables: constify nft_reg_load{8, 16, 64}()
> netfilter: nft_set_bitmap: initialize set element extension in lookups
> netfilter: nf_tables: do not update stateful expressions if lookup is
> inverted
>
> include/net/netfilter/nf_tables.h | 8 ++++----
> net/netfilter/nft_lookup.c | 12 +++++++-----
> net/netfilter/nft_set_bitmap.c | 1 +
> 3 files changed, 12 insertions(+), 9 deletions(-)
>
More information about the kernel-team
mailing list