APPLIED [OEM-5.14, OEM-5.17] Re: [SRU OEM-5.14, HWE-5.17 0/1] CVE-2022-20566
Timo Aaltonen
tjaalton at ubuntu.com
Tue Feb 7 14:13:36 UTC 2023
Cengiz Can kirjoitti 2.2.2023 klo 0.23:
> [Impact]
> In l2cap_chan_put of l2cap_core, there is a possible use after free due to
> improper locking. This could lead to local escalation of privilege with no
> additional execution privileges needed. User interaction is not needed for
> exploitation.
>
> [Fix]
> Clean cherry pick from upstream.
>
> [Test case]
> Compile, boot and basic functionality tested with l2test.
>
> [Potential regression]
> Low. Adds a function to help with null check.
>
> Luiz Augusto von Dentz (1):
> Bluetooth: L2CAP: Fix use-after-free caused by l2cap_chan_put
>
> include/net/bluetooth/l2cap.h | 1 +
> net/bluetooth/l2cap_core.c | 61 +++++++++++++++++++++++++++--------
> 2 files changed, 49 insertions(+), 13 deletions(-)
>
applied to oem 5.14 & 5.17, thanks
--
t
More information about the kernel-team
mailing list