Hello:
This series was applied to netdev/net.git (main)
by Florian Westphal <fw@xxxxxxxxx>:
On Wed, 6 Sep 2023 18:25:07 +0200 you wrote:
> If priv->len is a multiple of 4, then dst[len / 4] can write past
> the destination array which leads to stack corruption.
>
> This construct is necessary to clean the remainder of the register
> in case ->len is NOT a multiple of the register size, so make it
> conditional just like nft_payload.c does.
>
> [...]
Here is the summary with links:
- [net,1/6] netfilter: nftables: exthdr: fix 4-byte stack OOB write
https://git.kernel.org/netdev/net/c/fd94d9dadee5
- [net,2/6] netfilter: nfnetlink_osf: avoid OOB read
https://git.kernel.org/netdev/net/c/f4f8a7803119
- [net,3/6] netfilter: nf_tables: uapi: Describe NFTA_RULE_CHAIN_ID
https://git.kernel.org/netdev/net/c/fdc04cc2d5fd
- [net,4/6] netfilter: nft_set_rbtree: skip sync GC for new elements in this transaction
https://git.kernel.org/netdev/net/c/2ee52ae94baa
- [net,5/6] netfilter: ipset: add the missing IP_SET_HASH_WITH_NET0 macro for ip_set_hash_netportnet.c
https://git.kernel.org/netdev/net/c/050d91c03b28
- [net,6/6] netfilter: nf_tables: Unbreak audit log reset
https://git.kernel.org/netdev/net/c/9b5ba5c9c510
You are awesome, thank you!
--
Deet-doot-dot, I am a bot.
https://korg.docs.kernel.org/patchwork/pwbot.html
