]> git.ipfire.org Git - thirdparty/linux.git/commit
projects / thirdparty / linux.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 6bcb772) | patch
netfilter: nf_conncount: fix leaked ct in error paths
authorFernando Fernandez Mancera <fmancera@suse.de>
Fri, 5 Dec 2025 11:58:01 +0000 (12:58 +0100)
committerFlorian Westphal <fw@strlen.de>
Wed, 10 Dec 2025 10:55:58 +0000 (11:55 +0100)
commit2e2a720766886190a6d35c116794693aabd332b6
treee50b1ae5993cd990822e1162eb5cb657e30f58e2tree
parent6bcb7727d9e612011b70d64a34401688b986d6abcommit | diff
netfilter: nf_conncount: fix leaked ct in error paths

There are some situations where ct might be leaked as error paths are
skipping the refcounted check and return immediately. In order to solve
it make sure that the check is always called.

Fixes: be102eb6a0e7 ("netfilter: nf_conncount: rework API to use sk_buff directly")
Signed-off-by: Fernando Fernandez Mancera <fmancera@suse.de>
Signed-off-by: Florian Westphal <fw@strlen.de>
net/netfilter/nf_conncount.c diff | blob | blame | history
A mirror of Linus' kernel repository