iptables: fix memory corruption when parsing nft rules - linux/poky.git

diff options

author	Christian Taedcke <christian.taedcke@weidmueller.com>	2024-07-29 09:54:03 +0200
committer	Steve Sakoman <steve@sakoman.com>	2024-08-06 19:11:18 -0700
commit	5241a967c1d8d85cc22c5fd0dcf09816523e7947 (patch)
tree	4102f1e751bb6316e0f169edd0ddd37428fe09c1 /scripts/lib/devtool/build.py
parent	d672cd4c934a564dc8e633c2427df01dcf512a2a (diff)
download	poky-5241a967c1d8d85cc22c5fd0dcf09816523e7947.tar.gz

iptables: fix memory corruption when parsing nft rules

This commit fixes a memory corruption issue when iptables (with enabled PACKAGECONFIG libnftnl) is used to access rules created by nft. To reproduce the issue: nft add chain ip filter TESTCHAIN { meta mark set 123 \;} iptables -t filter -n -L TESTCHAIN This produced the following output: Chain TESTCHAIN (0 references) target prot opt source destination MARK 0 -- 0.0.0.0/0 0.0.0.0/0 MARK set 0x7b malloc(): corrupted top size Aborted (core dumped) This commit fixes this issue. (From OE-Core rev: fa3873cfcda862d8aad564966070af216e4903c6) Signed-off-by: Christian Taedcke <christian.taedcke@weidmueller.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>

Diffstat (limited to 'scripts/lib/devtool/build.py')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: