ACK: [SRU Focal,Jammy 0/1] CVE-2023-6040
Manuel Diewald
manuel.diewald at canonical.com
Fri Jan 5 09:42:44 UTC 2024
On Thu, Jan 04, 2024 at 11:12:56PM -0300, Thadeu Lima de Souza Cascardo wrote:
> [Impact]
> Users allowed to use unprivileged user/network namespaces may cause an
> out-of-bounds access when creating nftables tables on a unknown family.
>
> [Test case]
> PoC was tested.
>
> [Potential regression]
> nftables users may regress.
>
> Phil Sutter (1):
> netfilter: nf_tables: Reject tables of unsupported family
>
> net/netfilter/nf_tables_api.c | 27 +++++++++++++++++++++++++++
> 1 file changed, 27 insertions(+)
>
> --
> 2.34.1
>
>
> --
> kernel-team mailing list
> kernel-team at lists.ubuntu.com
> https://lists.ubuntu.com/mailman/listinfo/kernel-team
Acked-by: Manuel Diewald <manuel.diewald at canonical.com>
--
Manuel
More information about the kernel-team
mailing list