ACK: [SRU][F/J/K/L][PATCH 0/1] CVE-2023-3090

Roxana Nicolescu roxana.nicolescu at canonical.com
Tue Jul 4 06:54:36 UTC 2023


On 03/07/2023 23:23, Yuxuan Luo wrote:
> [Impact]
> A heap out-of-bounds write vulnerability in the Linux Kernel ipvlan network
> driver can be exploited to achieve local privilege escalation.
>
> [Backport]
> Clean cherry pick.
>
> [Test]
> Compile and boot tested.
>
> [Potential Regression]
> Expect very low regression potential.
>
> t.feng (1):
>    ipvlan:Fix out-of-bounds caused by unclear skb->cb
>
>   drivers/net/ipvlan/ipvlan_core.c | 6 ++++++
>   1 file changed, 6 insertions(+)
>
Acked-by: Roxana Nicolescu <roxana.nicolescu at canonical.com>



More information about the kernel-team mailing list