APPLIED [OEM-5.14] Re: [SRU Bionic/Focal/Impish/Jammy/OEM-5.14 0/1] CVE-2022-0435
Timo Aaltonen
tjaalton at ubuntu.com
Tue Feb 15 10:51:49 UTC 2022
Thadeu Lima de Souza Cascardo kirjoitti 14.2.2022 klo 16.25:
> [Impact]
> An attacker TIPC message may cause the kernel to panic. Remote code
> execution should be prevented by stack protection mitigations.
>
> [Backports]
> Upstream stable 5.4.y and 4.15.y were used for the focal and bionic
> backports.
>
> [Potential regression]
> TIPC users might be affected.
>
> Jon Maloy (1):
> tipc: improve size validations for received domain records
>
> net/tipc/link.c | 10 +++++++---
> net/tipc/monitor.c | 2 ++
> 2 files changed, 9 insertions(+), 3 deletions(-)
>
applied to oem-5.14, thanks
--
t
More information about the kernel-team
mailing list