[net-next,10/13] netfilter: nft_exthdr: Fix for unsafe packet data read

From: Phil Sutter <phil@nwl.cc>

From: Pablo Neira Ayuso <pablo@netfilter.org>
To: netfilter-devel@vger.kernel.org
Cc: davem@davemloft.net, netdev@vger.kernel.org, kuba@kernel.org
Subject: [PATCH net-next 10/13] netfilter: nft_exthdr: Fix for unsafe packet
	data read
Date: Wed,  9 Jun 2021 23:45:20 +0200
Message-Id: <20210609214523.1678-11-pablo@netfilter.org>
In-Reply-To: <20210609214523.1678-1-pablo@netfilter.org>
References: <20210609214523.1678-1-pablo@netfilter.org>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
Precedence: bulk

Message ID	20210609214523.1678-11-pablo@netfilter.org
State	New
Headers	show Return-Path: <netdev-owner@kernel.org> From: Pablo Neira Ayuso <pablo@netfilter.org> To: netfilter-devel@vger.kernel.org Cc: davem@davemloft.net, netdev@vger.kernel.org, kuba@kernel.org Subject: [PATCH net-next 10/13] netfilter: nft_exthdr: Fix for unsafe packet data read Date: Wed, 9 Jun 2021 23:45:20 +0200 Message-Id: <20210609214523.1678-11-pablo@netfilter.org> In-Reply-To: <20210609214523.1678-1-pablo@netfilter.org> References: <20210609214523.1678-1-pablo@netfilter.org> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Precedence: bulk
Series	Netfilter updates for net-next \| expand [net-next,00/13] Netfilter updates for net-next [net-next,02/13] netfilter: nf_tables: remove nft_ctx_init_from_elemattr() [net-next,04/13] netfilter: nftables: add nf_ct_pernet() helper function [net-next,06/13] netfilter: conntrack: Introduce udp offload timeout configuration [net-next,08/13] netfilter: annotate nf_tables base hook ops [net-next,10/13] netfilter: nft_exthdr: Fix for unsafe packet data read [net-next,12/13] netfilter: nfnetlink_hook: add depends-on nftables

[net-next,10/13] netfilter: nft_exthdr: Fix for unsafe packet data read

Commit Message

Patch