APPLIED [OEM-5.17, OEM-6.0, OEM-6.1] Re: [SRU Jammy,OEM-5.17,OEM-6.0,OEM-6.1,Lunar 0/1] CVE-2023-4004
Timo Aaltonen
tjaalton at ubuntu.com
Fri Aug 4 11:24:53 UTC 2023
Thadeu Lima de Souza Cascardo kirjoitti 3.8.2023 klo 0.02:
> [Impact]
> Unprivileged users can exploit a use-after-free in the pipapo nftables
> set by using unprivileged user namespaces.
>
> [Potential regression]
> nftables users may regress.
>
> Florian Westphal (1):
> netfilter: nft_set_pipapo: fix improper element removal
>
> net/netfilter/nft_set_pipapo.c | 6 +++++-
> 1 file changed, 5 insertions(+), 1 deletion(-)
>
applied to oem kernels, thanks
--
t
More information about the kernel-team
mailing list