APPLIED[L/J/F/HWE-5.19]: [SRU Focal, Jammy, HWE-5.19, OEM-6.0, Lunar 0/1] CVE-2023-40283
Stefan Bader
stefan.bader at canonical.com
Thu Aug 31 08:55:22 UTC 2023
On 28.08.23 17:56, Cengiz Can wrote:
> [Impact]
> An issue was discovered in l2cap_sock_release in net/bluetooth/l2cap_sock.c in
> the Linux kernel before 6.4.10. There is a use-after-free because the children
> of an sk are mishandled.
>
> [Fix]
> Cherry picked from upstream.
>
> [Test case]
> Compile, boot and l2test tested with dual bluetooth adapters.
>
> [Potential regression]
> Low regression potential.
>
> Sungwoo Kim (1):
> Bluetooth: L2CAP: Fix use-after-free in l2cap_sock_ready_cb
>
> net/bluetooth/l2cap_sock.c | 2 ++
> 1 file changed, 2 insertions(+)
>
Applied to lunar,jammy,focal:linux/master-next and
jammy:linux-hwe-5.19/hwe-5.19-next. Thanks.
-Stefan
-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_0xE8675DEECBEECEA3.asc
Type: application/pgp-keys
Size: 44613 bytes
Desc: OpenPGP public key
URL: <https://lists.ubuntu.com/archives/kernel-team/attachments/20230831/2023194d/attachment-0001.key>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_signature
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <https://lists.ubuntu.com/archives/kernel-team/attachments/20230831/2023194d/attachment-0001.sig>
More information about the kernel-team
mailing list