A stack based out-of-bounds write was found in the netfilter subsystem in the Linux kernel. If priv->len is a multiple of 4, then dst[len / 4] can write past the destination array which leads to stack corruption. Upstream patch: https://lore.kernel.org/all/20230906162525.11079-2-fw@strlen.de/
Created kernel tracking bugs for this issue: Affects: fedora-all [bug 2238313]