Merge tag 'nf-24-08-28' of git://git.kernel.org/pub/scm/linux/kernel/git/netfilter/nf - kernel

diff options

author	Paolo Abeni <[email protected]>	2024-08-29 09:35:54 +0000
committer	Paolo Abeni <[email protected]>	2024-08-29 09:35:54 +0000
commit	0240bceb0dd567d8e129d965f57a40dccef8c953 (patch)
tree	329f66eb2a88288c463cd7f1496b7369f6901e30 /security/selinux/hooks.c
parent	mailmap: update entry for Sriram Yagnaraman (diff)
parent	netfilter: nf_tables_ipv6: consider network offset in netdev/egress validation (diff)
download	kernel-0240bceb0dd567d8e129d965f57a40dccef8c953.tar.gz kernel-0240bceb0dd567d8e129d965f57a40dccef8c953.zip

Merge tag 'nf-24-08-28' of git://git.kernel.org/pub/scm/linux/kernel/git/netfilter/nf

Pablo Neira Ayuso says: ==================== Netfilter fixes for net The following patchset contains Netfilter fixes for net: Patch #1 sets on NFT_PKTINFO_L4PROTO for UDP packets less than 4 bytes payload from netdev/egress by subtracting skb_network_offset() when validating IPv4 packet length, otherwise 'meta l4proto udp' never matches. Patch #2 subtracts skb_network_offset() when validating IPv6 packet length for netdev/egress. netfilter pull request 24-08-28 * tag 'nf-24-08-28' of git://git.kernel.org/pub/scm/linux/kernel/git/netfilter/nf: netfilter: nf_tables_ipv6: consider network offset in netdev/egress validation netfilter: nf_tables: restore IP sanity checks for netdev/egress ==================== Link: https://patch.msgid.link/[email protected] Signed-off-by: Paolo Abeni <[email protected]>

Diffstat (limited to 'security/selinux/hooks.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: