NACK [OEM-5.17] Re: [SRU Bionic/Focal/Impish/OEM-5.14/Jammy/OEM-5.17 0/1] CVE-2022-29581
Timo Aaltonen
tjaalton at ubuntu.com
Wed May 18 09:01:37 UTC 2022
Thadeu Lima de Souza Cascardo kirjoitti 18.5.2022 klo 7.39:
> [Impact]
>
> From https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-29581
>
> Improper Update of Reference Count vulnerability in net/sched of Linux Kernel
> allows local attacker to cause privilege escalation to root. This issue
> affects: Linux Kernel versions prior to 5.18; version 4.14 and later versions.
>
> Eric Dumazet (1):
> net/sched: cls_u32: fix netns refcount changes in u32_change()
>
> net/sched/cls_u32.c | 18 +++++++++++-------
> 1 file changed, 11 insertions(+), 7 deletions(-)
>
this came via stable fixes (1973280) already
--
t
More information about the kernel-team
mailing list