[SRU Bionic/Focal 0/1] CVE-2022-34918
Thadeu Lima de Souza Cascardo
cascardo at canonical.com
Thu Jul 14 21:28:26 UTC 2022
[Impact]
An out-of-bounds write when adding a new element to a set on the netfilter
subsystem in Linux may allow for privilege escalation.
[Test case]
A reproducer that crashes the system was tested and stopped working with the fix.
[Fix]
Backport simply applied the same logic to a different place in the code as it was
moved to its own function on later versions.
[Potential regression]
nftables/netfilter users would be affected.
Pablo Neira Ayuso (1):
netfilter: nf_tables: stricter validation of element data
net/netfilter/nf_tables_api.c | 9 ++++++++-
1 file changed, 8 insertions(+), 1 deletion(-)
--
2.34.1
More information about the kernel-team
mailing list