ACK/cmnt: [Trusty][Zesty][SRU][PATCH 0/1] Fix for CVE-2017-18017
Khaled Elmously
khalid.elmously at canonical.com
Fri Jan 19 05:50:14 UTC 2018
Patch looks good but Zesty has been EOL'd.
On 2018-01-09 11:30:18 , Po-Hsu Lin wrote:
> From our CVE tracker, only Trusty and Zesty need this patch
> and it can be cherry-picked for both of them.
>
> This patch fixes an use after free issue in xt_TCPMSS.
>
> Eric Dumazet (1):
> netfilter: xt_TCPMSS: add more sanity tests on tcph->doff
>
> net/netfilter/xt_TCPMSS.c | 6 +++++-
> 1 file changed, 5 insertions(+), 1 deletion(-)
>
> --
Acked-by: Khalid Elmously <khalid.elmously at canonical.com>
More information about the kernel-team
mailing list