netfilter: nf_conntrack_h323: don't pass uninitialised l3num value

author Florian Westphal <fw@strlen.de>

Wed, 11 Feb 2026 11:53:09 +0000 (12:53 +0100)

committer Florian Westphal <fw@strlen.de>

Tue, 17 Feb 2026 14:04:20 +0000 (15:04 +0100)
author Florian Westphal <fw@strlen.de>
Wed, 11 Feb 2026 11:53:09 +0000 (12:53 +0100)
committer Florian Westphal <fw@strlen.de>
Tue, 17 Feb 2026 14:04:20 +0000 (15:04 +0100)
diff --git a/net/netfilter/nf_conntrack_h323_main.c b/net/netfilter/nf_conntrack_h323_main.c

index 17f1f453d4813d0b562cf7ddeb6ce32ff396218c..a2a0e22ccee198ef2421b1f8ee03cbdd2f562612 100644 (file)
--- a/net/netfilter/nf_conntrack_h323_main.c
+++ b/net/netfilter/nf_conntrack_h323_main.c
@@ -1187,13 +1187,13 @@ static struct nf_conntrack_expect *find_expect(struct nf_conn *ct,
  {
         struct net *net = nf_ct_net(ct);
         struct nf_conntrack_expect *exp;
-       struct nf_conntrack_tuple tuple;
+       struct nf_conntrack_tuple tuple = {
+               .src.l3num = nf_ct_l3num(ct),
+               .dst.protonum = IPPROTO_TCP,
+               .dst.u.tcp.port = port,
+       };
  
-       memset(&tuple.src.u3, 0, sizeof(tuple.src.u3));
-       tuple.src.u.tcp.port = 0;
         memcpy(&tuple.dst.u3, addr, sizeof(tuple.dst.u3));
-       tuple.dst.u.tcp.port = port;
-       tuple.dst.protonum = IPPROTO_TCP;
  
         exp = __nf_ct_expect_find(net, nf_ct_zone(ct), &tuple);
         if (exp && exp->master == ct)
author	Florian Westphal <fw@strlen.de>
	Wed, 11 Feb 2026 11:53:09 +0000 (12:53 +0100)
committer	Florian Westphal <fw@strlen.de>
	Tue, 17 Feb 2026 14:04:20 +0000 (15:04 +0100)