mbox series

[SRU,Jammy,0/1] CVE-2022-1015

Message ID 20220407141721.362852-1-cascardo@canonical.com
Headers show
Series CVE-2022-1015 | expand

Message

Thadeu Lima de Souza Cascardo April 7, 2022, 2:17 p.m. UTC 
[Impact]
An unprivileged user may cause an OOB write using nftables.

[Potential regression]
nftables use may break.

Pablo Neira Ayuso (2):
  netfilter: nf_tables: validate registers coming from userspace.

 net/netfilter/nf_tables_api.c  | 22 +++++++++++++++++-----
 net/netfilter/nf_tables_core.c |  2 +-
 2 files changed, 18 insertions(+), 6 deletions(-)

Comments

Tim Gardner April 8, 2022, 6:31 p.m. UTC | #1 
Acked-by: Tim Gardner <tim.gardner@canonical.com>

On 4/7/22 08:17, Thadeu Lima de Souza Cascardo wrote:
> [Impact]
> An unprivileged user may cause an OOB write using nftables.
> 
> [Potential regression]
> nftables use may break.
> 
> Pablo Neira Ayuso (2):
>    netfilter: nf_tables: validate registers coming from userspace.
> 
>   net/netfilter/nf_tables_api.c  | 22 +++++++++++++++++-----
>   net/netfilter/nf_tables_core.c |  2 +-
>   2 files changed, 18 insertions(+), 6 deletions(-)
>
Paolo Pisati April 13, 2022, 2:46 p.m. UTC | #2 
On Thu, Apr 07, 2022 at 11:17:20AM -0300, Thadeu Lima de Souza Cascardo wrote:
> [Impact]
> An unprivileged user may cause an OOB write using nftables.