APPLIED [OEM-5.14/OEM-5.17/OEM-6.0/OEM-6.1] Re: [UBUNTU OEM-5.14, Jammy, HWE-5.17, Kinetic, OEM-6.0, Lunar, OEM-6.1, Unstable 0/1] CVE-2023-0179
Timo Aaltonen
tjaalton at ubuntu.com
Thu Jan 19 17:17:41 UTC 2023
- Previous message (by thread): ACK/Cmnt: [UBUNTU OEM-5.14, Jammy, HWE-5.17, Kinetic, OEM-6.0, Lunar, OEM-6.1, Unstable 1/1] netfilter: nft_payload: incorrect arithmetics when fetching VLAN header bits
- Next message (by thread): APPLIED[L/U]: [UBUNTU OEM-5.14, Jammy, HWE-5.17, Kinetic, OEM-6.0, Lunar, OEM-6.1, Unstable 0/1] CVE-2023-0179
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
Thadeu Lima de Souza Cascardo kirjoitti 18.1.2023 klo 20.58:
> [Impact]
> An unprivileged user may escalate privileges by using netfilter VLAN support and
> user/network namespaces.
>
> [Testing]
> Could not reproduce with PoC at https://seclists.org/oss-sec/2023/q1/20.
>
> [Potential regression]
> netfilter rules may break.
>
> Pablo Neira Ayuso (1):
> netfilter: nft_payload: incorrect arithmetics when fetching VLAN
> header bits
>
> net/netfilter/nft_payload.c | 2 +-
> 1 file changed, 1 insertion(+), 1 deletion(-)
>
applied to oem kernels, thanks
--
t
- Previous message (by thread): ACK/Cmnt: [UBUNTU OEM-5.14, Jammy, HWE-5.17, Kinetic, OEM-6.0, Lunar, OEM-6.1, Unstable 1/1] netfilter: nft_payload: incorrect arithmetics when fetching VLAN header bits
- Next message (by thread): APPLIED[L/U]: [UBUNTU OEM-5.14, Jammy, HWE-5.17, Kinetic, OEM-6.0, Lunar, OEM-6.1, Unstable 0/1] CVE-2023-0179
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
More information about the kernel-team
mailing list