ACK: [SRU OEM-5.10/Hirsute/Impish 0/1] CVE-2021-43267
Kleber Souza
kleber.souza at canonical.com
Thu Nov 25 10:24:54 UTC 2021
On 24.11.21 13:34, Thadeu Lima de Souza Cascardo wrote:
> CVE-2021-43267
>
> [Impact]
> An invalid TIPC message may cause out-of-bounds read and write.
>
> [Test case]
> There is no known test case.
>
> [Potential regression]
> Only TIPC is affected, and only messages of type MSG_CRYPTO should be
> affected. This should be restricted to TIPC users.
>
>
> Max VA (1):
> tipc: fix size validations for the MSG_CRYPTO type
>
> net/tipc/crypto.c | 32 +++++++++++++++++++++-----------
> 1 file changed, 21 insertions(+), 11 deletions(-)
>
Acked-by: Kleber Sacilotto de Souza <kleber.souza at canonical.com>
Thanks
More information about the kernel-team
mailing list