[Zesty][PATCH v2 0/2] CVE-2017-7979: net sched actions: access of uninitialized data and error handling

Fabian Gr├╝nbichler f.gruenbichler at proxmox.com
Mon Apr 24 14:26:37 UTC 2017


== SRU Justification ==

Impact: adding a tc filter sometimes fails, potentially followed by kernel hangs and kernel NULL pointer dereference (CVE 2017-7979)

Fix: cherry-pick fix from v4.11-rc8

Regression Potential: clean cherry-picks from upstream

Wei Yongjun (1):
  net_sched: nla_memdup_cookie() can be static

Wolfgang Bumiller (1):
  net sched actions: allocate act cookie early

 net/sched/act_api.c | 55 +++++++++++++++++++++++++++++++----------------------
 1 file changed, 32 insertions(+), 23 deletions(-)


More information about the kernel-team mailing list