]> git.itanic.dy.fi Git - linux-stable/commit
projects / linux-stable / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: c9a46a3) | patch
netfilter: nf_tables: hold mutex on netns pre_exit path
authorPablo Neira Ayuso <pablo@netfilter.org>
Mon, 30 May 2022 16:24:05 +0000 (18:24 +0200)
committerGreg Kroah-Hartman <gregkh@linuxfoundation.org>
Mon, 6 Jun 2022 06:48:54 +0000 (08:48 +0200)
commitcc7c6e0a8e1d45955b976943dbd4ba98448ceb46
tree63edd0c5a2902812baa1d127e90663b926ef5bcftree | snapshot
parentc9a46a3d549286861259c19af4747e12cfaeece9commit | diff
netfilter: nf_tables: hold mutex on netns pre_exit path

commit 3923b1e4406680d57da7e873da77b1683035d83f upstream.

clean_net() runs in workqueue while walking over the lists, grab mutex.

Fixes: 767d1216bff8 ("netfilter: nftables: fix possible UAF over chains from packet path in netns")
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
net/netfilter/nf_tables_api.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.