[SRU Focal/OEM-5.14/Jammy/HWE-5.17/Kinetic 0/1] CVE-2022-45934
Cengiz Can
cengiz.can at canonical.com
Sat Dec 10 03:15:10 UTC 2022
[Impact]
An issue was discovered in the Linux kernel through 6.0.10. l2cap_config_req in
net/bluetooth/l2cap_core.c has an integer wraparound via L2CAP_CONF_REQ packets.
[Fix]
Picked from upstream. Clean cherry picks to all.
[Test case]
Compile, boot and basic functionality tested with l2test.
[Potential regression]
Low. Fix only adds an overflow check.
Sungwoo Kim (1):
Bluetooth: L2CAP: Fix u8 overflow
net/bluetooth/l2cap_core.c | 3 ++-
1 file changed, 2 insertions(+), 1 deletion(-)
--
2.37.2
More information about the kernel-team
mailing list