APPLIED: [PATCH 0/1][SRU][X] CVE-2018-9517: memory corruption in
Khaled Elmously
khalid.elmously at canonical.com
Mon Mar 4 02:46:58 UTC 2019
On 2019-02-18 23:18:59 , AceLan Kao wrote:
> In pppol2tp_connect, there is possible memory corruption due to a use after
> free. This could lead to local escalation of privilege with System
> execution privileges needed. User interaction is not needed for
> exploitation. Product: Android. Versions: Android kernel. Android ID:
> A-38159931.
>
> Backported to Xenial, the patch itself doesn't conflict, but the
> referenced function that doesn't exist which leads to the conflict.
> Build logs are clean, and the kernel boots and dmesg doesn't contain
> errors.
>
> Guillaume Nault (1):
> l2tp: pass tunnel pointer to ->session_create()
>
> net/l2tp/l2tp_core.h | 4 +++-
> net/l2tp/l2tp_eth.c | 11 +++--------
> net/l2tp/l2tp_netlink.c | 8 ++++----
> net/l2tp/l2tp_ppp.c | 19 +++++++------------
> 4 files changed, 17 insertions(+), 25 deletions(-)
>
> --
> 2.17.1
>
>
> --
> kernel-team mailing list
> kernel-team at lists.ubuntu.com
> https://lists.ubuntu.com/mailman/listinfo/kernel-team
More information about the kernel-team
mailing list