[SRU Jammy, OEM-6.5, Mantic 0/1] CVE-2023-51780
Cengiz Can
cengiz.can at canonical.com
Thu Feb 1 16:17:35 UTC 2024
[Impact]
An issue was discovered in the Linux kernel before 6.6.8. do_vcc_ioctl in
net/atm/ioctl.c has a use-after-free because of a vcc_recvmsg race condition.
[Fix]
Cherry picked from upstream.
[Test case]
Compile tested only.
[Where things could go wrong]
Users of the ATM driver might be affected.
Hyunwoo Kim (1):
atm: Fix Use-After-Free in do_vcc_ioctl
net/atm/ioctl.c | 7 +++++--
1 file changed, 5 insertions(+), 2 deletions(-)
--
2.40.1
More information about the kernel-team
mailing list