projects / linux.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: e6182c6) | patch
netfilter: nft_exthdr: break evaluation if setting TCP option fails
authorPablo Neira Ayuso <pablo@netfilter.org>
Tue, 30 Nov 2021 10:34:04 +0000 (11:34 +0100)
committerGreg Kroah-Hartman <gregkh@linuxfoundation.org>
Tue, 14 Dec 2021 09:57:10 +0000 (10:57 +0100)
commitd2cd7c7f8f83b057fefa0b0e69a4a66969ffb8f5
tree03d850aa3a06deb4e4a955320f413ce4d5dbe126tree | snapshot
parente6182c63d827ed556bd5a493b63ddc7b2c999ae5commit | diff
netfilter: nft_exthdr: break evaluation if setting TCP option fails

commit 962e5a40358787105f126ab1dc01604da3d169e9 upstream.

Break rule evaluation on malformed TCP options.

Fixes: 99d1712bc41c ("netfilter: exthdr: tcp option set support")
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
net/netfilter/nft_exthdr.c diff | blob | history
ep93xx device tree rework repo: git://git.maquefel.me/linux.git