[SRU Mantic 0/1] CVE-2023-4921
Thadeu Lima de Souza Cascardo
cascardo at canonical.com
Wed Oct 11 21:00:52 UTC 2023
[Impact]
Unprivileged users using network user namespaces can leverage a
use-after-free vulnerability in the qfq qdisc to potentially escalate
privileges.
[Potential Regression]
Users of qfq qdisc may see regressions.
valis (1):
net: sched: sch_qfq: Fix UAF in qfq_dequeue()
net/sched/sch_plug.c | 2 +-
net/sched/sch_qfq.c | 22 +++++++++++++++++-----
2 files changed, 18 insertions(+), 6 deletions(-)
--
2.34.1
More information about the kernel-team
mailing list