[SRU][Q][PATCH 0/5] CVE-2026-43500
Massimiliano Pellizzer
massimiliano.pellizzer at canonical.com
Sat May 16 12:28:43 UTC 2026
https://ubuntu.com/security/CVE-2026-43500
David Howells (3):
rxrpc: Fix conn-level packet handling to unshare RESPONSE packets
rxrpc: Fix potential UAF after skb_unshare() failure
rxrpc: Fix rxrpc_input_call_event() to only unshare DATA packets
Hyunwoo Kim (1):
rxrpc: Also unshare DATA/RESPONSE packets when paged frags are present
Wang Jie (1):
rxrpc: only handle RESPONSE during service challenge
include/trace/events/rxrpc.h | 4 ++--
net/rxrpc/ar-internal.h | 1 -
net/rxrpc/call_event.c | 22 +++++++++++++++++-
net/rxrpc/conn_event.c | 44 +++++++++++++++++++++++++++++++++---
net/rxrpc/io_thread.c | 24 ++------------------
net/rxrpc/skbuff.c | 9 --------
6 files changed, 66 insertions(+), 38 deletions(-)
--
2.53.0
More information about the kernel-team
mailing list