ACK: [SRU Jammy,OEM-5.17,OEM-6.0,OEM-6.1,Lunar 0/1] CVE-2023-4004
Stefan Bader
stefan.bader at canonical.com
Thu Aug 3 10:24:56 UTC 2023
On 02.08.23 23:02, Thadeu Lima de Souza Cascardo wrote:
> [Impact]
> Unprivileged users can exploit a use-after-free in the pipapo nftables
> set by using unprivileged user namespaces.
>
> [Potential regression]
> nftables users may regress.
>
> Florian Westphal (1):
> netfilter: nft_set_pipapo: fix improper element removal
>
> net/netfilter/nft_set_pipapo.c | 6 +++++-
> 1 file changed, 5 insertions(+), 1 deletion(-)
>
Acked-by: Stefan Bader <stefan.bader at canonical.com>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_0xE8675DEECBEECEA3.asc
Type: application/pgp-keys
Size: 44613 bytes
Desc: OpenPGP public key
URL: <https://lists.ubuntu.com/archives/kernel-team/attachments/20230803/fd260215/attachment-0001.key>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_signature
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <https://lists.ubuntu.com/archives/kernel-team/attachments/20230803/fd260215/attachment-0001.sig>
More information about the kernel-team
mailing list