projects / linux.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 2404b73) | patch
netfilter: nf_tables: free chain context when BINDING flag is missing
authorFlorian Westphal <fw@strlen.de>
Tue, 11 Aug 2020 17:39:09 +0000 (19:39 +0200)
committerPablo Neira Ayuso <pablo@netfilter.org>
Thu, 13 Aug 2020 02:17:46 +0000 (04:17 +0200)
commit59136aa3b2649796a3a1fd90158675f1f640ce0e
tree089f379fd710cc74199b32745bd6f22e102d2ceatree | snapshot
parent2404b73c3f1a5f15726c6ecd226b56f6f992767fcommit | diff
netfilter: nf_tables: free chain context when BINDING flag is missing

syzbot found a memory leak in nf_tables_addchain() because the chain
object is not free'd correctly on error.

Fixes: d0e2c7de92c7 ("netfilter: nf_tables: add NFT_CHAIN_BINDING")
Reported-by: syzbot+c99868fde67014f7e9f5@syzkaller.appspotmail.com
Signed-off-by: Florian Westphal <fw@strlen.de>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
net/netfilter/nf_tables_api.c diff | blob | history