Merge branch 'master' of git://git.kernel.org/pub/scm/linux/kernel/git/pablo/nf

Pablo Neira Ayuso says: ==================== The following patchset contains three netfilter fixes for your net tree, they are: * A couple of fixes to resolve info leak to userspace due to uninitialized memory area in ulogd, from Mathias Krause. * Fix instruction ordering issues that may lead to the access of uninitialized data in x_tables. The problem involves the table update (producer) and the main packet matching (consumer) routines. Detected in SMP ARMv7, from Will Deacon. ==================== Signed-off-by: David S. Miller <davem@davemloft.net>
author: David S. Miller <davem@davemloft.net> 2013-10-23 16:55:04 -0400
committer: David S. Miller <davem@davemloft.net> 2013-10-23 16:55:04 -0400
commit: afb14c7cb66c0401237b181131fd3d6bd4810909 (patch)
tree: e87dec56dd5b20926aa4a35449e1c463d1d2db00 /net/netfilter
parent: 320437af954cbe66478f1f5e8b34cb5a8d072191 (diff)
parent: b416c144f46af1a30ddfa4e4319a8f077381ad63 (diff)
1 files changed, 6 insertions, 1 deletions
diff --git a/net/netfilter/x_tables.c b/net/netfilter/x_tables.c
index 8b03028cca69..227aa11e8409 100644
--- a/net/netfilter/x_tables.c
+++ b/net/netfilter/x_tables.c
@@ -845,8 +845,13 @@ xt_replace_table(struct xt_table *table,
 		return NULL;
 	}
 
-	table->private = newinfo;
 	newinfo->initial_entries = private->initial_entries;
+	/*
+	 * Ensure contents of newinfo are visible before assigning to
+	 * private.
+	 */
+	smp_wmb();
+	table->private = newinfo;
 
 	/*
 	 * Even though table entries have now been swapped, other CPU's
author	David S. Miller <davem@davemloft.net>	2013-10-23 16:55:04 -0400
committer	David S. Miller <davem@davemloft.net>	2013-10-23 16:55:04 -0400
commit	afb14c7cb66c0401237b181131fd3d6bd4810909 (patch)
tree	e87dec56dd5b20926aa4a35449e1c463d1d2db00 /net/netfilter
parent	320437af954cbe66478f1f5e8b34cb5a8d072191 (diff)
parent	b416c144f46af1a30ddfa4e4319a8f077381ad63 (diff)