ACK: [SRU Focal/Impish 0/1] CVE-2022-1055

Tim Gardner tim.gardner at canonical.com
Thu Mar 24 11:32:38 UTC 2022


Acked-by: Tim Gardner <tim.gardner at canonical.com>

On 3/24/22 05:22, Thadeu Lima de Souza Cascardo wrote:
> [Impact]
> An unprivileged user can use TC to write to out-of-bounds memory, possibly
> leading to a privilege escalation.
> 
> [Backport]
> There was no flags at tc_new_tfilter, which was introduced by a later rewrite.
> 
> [Test case]
> The syzkaller report had no reproducer, and one could not be found or written.
> 
> [Potential regression]
> qdisc configuration and use can lead to unexpected network behavior.
> 
> Eric Dumazet (1):
>    net: sched: fix use-after-free in tc_new_tfilter()
> 
>   net/sched/cls_api.c | 11 +++++++----
>   1 file changed, 7 insertions(+), 4 deletions(-)
> 

-- 
-----------
Tim Gardner
Canonical, Inc



More information about the kernel-team mailing list