[UBUNTU Bionic, Focal, Jammy, Kinetic, OEM-5.14, OEM-5.17, OEM-6.0 0/1] CVE-2023-1281
Thadeu Lima de Souza Cascardo
cascardo at canonical.com
Wed Mar 15 15:20:58 UTC 2023
[Impact]
An unprivileged user may exploit a use-after-free condition with the tcindex
classifier, leading to possible local escalation of privilege.
[Backport]
The fix uses rcu_replace_pointer, which was not available on 4.15 and 5.4.
A backport to add it was done on those branches.
The tcindex classifier was removed on 6.1 and 6.2 kernels.
[Potential regression]
Only tcindex classifiers are under risk of regressions.
Paul E. McKenney (1):
rcu: Upgrade rcu_swap_protected() to rcu_replace_pointer()
Pedro Tammela (1):
net/sched: tcindex: update imperfect hash filters respecting rcu
include/linux/rcupdate.h | 18 ++++++++++++++++++
net/sched/cls_tcindex.c | 34 ++++++++++++++++++++++++++++++----
2 files changed, 48 insertions(+), 4 deletions(-)
--
2.34.1
More information about the kernel-team
mailing list