From: Gao Feng
When memory is exhausted, nfct_seqadj_ext_add may fail to add the
synproxy and seqadj extensions. The function nf_ct_seqadj_init doesn't
check if get valid seqadj pointer by the nfct_seqadj.
Now drop the packet directly when fail to add seqadj extension to
avoid dereference NULL p
On Fri, Sep 09, 2016 at 10:50:21PM +0800, f...@ikuai8.com wrote:
> From: Gao Feng
>
> When memory is exhausted, nfct_seqadj_ext_add may fail to add the
> synproxy and seqadj extensions. The function nf_ct_seqadj_init doesn't
> check if get valid seqadj pointer by the nfct_seqadj.
>
> Now drop th