The following patchset contains a set of fixes for conntrackd as reported by Paul Wouters. Let me know if you have any concern with it, thank you. Pablo Neira Ayuso (8): conntrackd: fix sanitization of expection attribute in the wire format conntrackd: NTA_MAX is also an invalid attribute conntrackd: fix leak in fork_process_new() conntrackd: fix descriptor leak in do_local_request() conntrackd: fix error handling in nfq_queue_cb() conntrackd: simplify branch in tcp_accept() conntrackd: use strncpy to set up the cache name conntrackd: missing break in expectation message parser function src/cache.c | 5 +++-- src/cthelper.c | 29 +++++++++++++++-------------- src/local.c | 9 ++++++--- src/parse.c | 8 +++++--- src/process.c | 2 ++ src/tcp.c | 12 +++++------- 6 files changed, 36 insertions(+), 29 deletions(-) -- 1.7.10.4 -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
