netfilter: fix double-free and use-after free (93bc4e89) · Commits · hpc / Old_Soft / kernel

Commit 93bc4e89 authored Jul 26, 2008 by

Pekka Enberg Committed by David S. Miller Jul 26, 2008

netfilter: fix double-free and use-after free



As suggested by Patrick McHardy, introduce a __krealloc() that doesn't
free the original buffer to fix a double-free and use-after-free bug
introduced by me in netfilter that uses RCU.

Reported-by: Patrick McHardy <kaber@trash.net>
Signed-off-by: Pekka Enberg <penberg@cs.helsinki.fi>
Tested-by: Dieter Ries <clip2@gmx.de>
Signed-off-by: Patrick McHardy <kaber@trash.net>
Signed-off-by: David S. Miller <davem@davemloft.net>

parent 3918fed5

Hide whitespace changes

Inline Side-by-side

Please register or to comment