APPLIED [OEM-6.0/OEM-6.1] Re: [SRU][Jammy/Jammy-OEM-6.0/Jammy-OEM-6.1/Lunar][PATCH 0/1] CVE-2023-4569
Timo Aaltonen
tjaalton at ubuntu.com
Thu Aug 31 10:46:42 UTC 2023
Yuxuan Luo kirjoitti 30.8.2023 klo 22.45:
> [Impact]
> A memory leak flaw was found in nft_set_catchall_flush in
> net/netfilter/nf_tables_api.c in the Linux Kernel. This issue may allow
> a local attacker to cause a double-deactivations of catchall elements,
> which results in a memory leak.
>
> [Backport]
> It is a clean cherry pick.
>
> [Test]
> Compile and boot tested.
>
> Florian Westphal (1):
> netfilter: nf_tables: deactivate catchall elements in next generation
>
> net/netfilter/nf_tables_api.c | 1 +
> 1 file changed, 1 insertion(+)
>
applied to oem kernels, thanks
--
t
More information about the kernel-team
mailing list