[SRU Focal,Jammy 0/1] CVE-2023-6040
Thadeu Lima de Souza Cascardo
cascardo at canonical.com
Fri Jan 5 02:12:56 UTC 2024
[Impact]
Users allowed to use unprivileged user/network namespaces may cause an
out-of-bounds access when creating nftables tables on a unknown family.
[Test case]
PoC was tested.
[Potential regression]
nftables users may regress.
Phil Sutter (1):
netfilter: nf_tables: Reject tables of unsupported family
net/netfilter/nf_tables_api.c | 27 +++++++++++++++++++++++++++
1 file changed, 27 insertions(+)
--
2.34.1
More information about the kernel-team
mailing list