[SRU OEM-6.0 0/1] CVE-2022-45934
Cengiz Can
cengiz.can at canonical.com
Thu Jan 26 20:37:21 UTC 2023
[Impact]
An issue was discovered in the Linux kernel through 6.0.10. l2cap_config_req in
net/bluetooth/l2cap_core.c has an integer wraparound via L2CAP_CONF_REQ packets.
[Fix]
Clean cherry-pick.
[Test case]
Compile, boot and basic functionality tested with l2test.
[Potential regression]
Low. Fix only adds an overflow check.
Sungwoo Kim (1):
Bluetooth: L2CAP: Fix u8 overflow
net/bluetooth/l2cap_core.c | 3 ++-
1 file changed, 2 insertions(+), 1 deletion(-)
--
2.37.2
More information about the kernel-team
mailing list