ACK: [SRU][OEM-5.14/OEM-5.17][PATCH 0/1] CVE-2023-0394
Tim Gardner
tim.gardner at canonical.com
Fri Mar 10 18:00:40 UTC 2023
On 3/9/23 1:22 PM, Yuxuan Luo wrote:
> [Impact]
> A vulnerability has found in ipv6 implementation at net/ipv6/raw.c: the
> IPV6_CHECKSUM offset is not calculated correctly because it does not exclude
> an extension header. This error could lead to NULL pointer dereference, which
> could be exploited to cause a denial of service.
>
> [Backport]
> It is a clean cherry pick.
>
> [Test]
> Compile and boot tested.
>
> [Potential Regression]
> Expecting low risk of regression as the commit does not change much but adding
> an extra layer of conditional calculation.
>
> Herbert Xu (1):
> ipv6: raw: Deduct extension header length in rawv6_push_pending_frames
>
> net/ipv6/raw.c | 4 ++++
> 1 file changed, 4 insertions(+)
>
Acked-by: Tim Gardner <tim.gardner at canonical.com>
--
-----------
Tim Gardner
Canonical, Inc
More information about the kernel-team
mailing list