NAK: [bionic:linux-hwe][PATCH 0/1] CVE-2021-22555
Kleber Souza
kleber.souza at canonical.com
Mon Jul 26 11:03:53 UTC 2021
On 22.07.21 17:12, Benjamin M Romer wrote:
> A heap out-of-bounds write affecting Linux since v2.6.19-rc1 was discovered
> in net/netfilter/x_tables.c. This allows an attacker to gain privileges or
> cause a DoS (via heap memory corruption) through user name space.
>
> Florian Westphal (1):
> netfilter: x_tables: fix compat match/target pad out-of-bound write
>
> net/ipv4/netfilter/arp_tables.c | 2 ++
> net/ipv4/netfilter/ip_tables.c | 2 ++
> net/ipv6/netfilter/ip6_tables.c | 2 ++
> net/netfilter/x_tables.c | 10 ++--------
> 4 files changed, 8 insertions(+), 8 deletions(-)
>
We were maintaining this kernel only as a base for bionic/linux-gke-5.3
and bionic/linux-raspi2-5.3. Both don't need to be supported anymore so
we don't need to ship this fix for any 5.3-based kernel.
Thanks,
Kleber
More information about the kernel-team
mailing list