NACK [OEM-5.17] Re: [SRU Bionic/Focal/Impish/OEM-5.14/Jammy/OEM-5.17 0/1] CVE-2022-29581
Thadeu Lima de Souza Cascardo
cascardo at canonical.com
Wed May 18 10:23:45 UTC 2022
On Wed, May 18, 2022 at 12:01:37PM +0300, Timo Aaltonen wrote:
> Thadeu Lima de Souza Cascardo kirjoitti 18.5.2022 klo 7.39:
> > [Impact]
> >
> > From https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-29581
> >
> > Improper Update of Reference Count vulnerability in net/sched of Linux Kernel
> > allows local attacker to cause privilege escalation to root. This issue
> > affects: Linux Kernel versions prior to 5.18; version 4.14 and later versions.
> >
> > Eric Dumazet (1):
> > net/sched: cls_u32: fix netns refcount changes in u32_change()
> >
> > net/sched/cls_u32.c | 18 +++++++++++-------
> > 1 file changed, 11 insertions(+), 7 deletions(-)
> >
>
> this came via stable fixes (1973280) already
>
>
>
> --
> t
We are going to respin kernels in -updates, however, for this one. And the
version in -updates doesn't have it. :-(
Cascardo.
More information about the kernel-team
mailing list