mbox series

[SRU,OEM-6.0,0/1] CVE-2022-45934

Message ID 20230126203722.454754-1-cengiz.can@canonical.com
Headers show
Series CVE-2022-45934 | expand

Message

Cengiz Can Jan. 26, 2023, 8:37 p.m. UTC 
[Impact]
An issue was discovered in the Linux kernel through 6.0.10. l2cap_config_req in
net/bluetooth/l2cap_core.c has an integer wraparound via L2CAP_CONF_REQ packets.

[Fix]
Clean cherry-pick.

[Test case]
Compile, boot and basic functionality tested with l2test.

[Potential regression]
Low. Fix only adds an overflow check.

Sungwoo Kim (1):
  Bluetooth: L2CAP: Fix u8 overflow

 net/bluetooth/l2cap_core.c | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

--
2.37.2

Comments

Tim Gardner Jan. 27, 2023, 2:32 a.m. UTC | #1 
On 1/26/23 13:37, Cengiz Can wrote:
> [Impact]
> An issue was discovered in the Linux kernel through 6.0.10. l2cap_config_req in
> net/bluetooth/l2cap_core.c has an integer wraparound via L2CAP_CONF_REQ packets.
> 
> [Fix]
> Clean cherry-pick.
> 
> [Test case]
> Compile, boot and basic functionality tested with l2test.
> 
> [Potential regression]
> Low. Fix only adds an overflow check.
> 
> Sungwoo Kim (1):
>    Bluetooth: L2CAP: Fix u8 overflow
> 
>   net/bluetooth/l2cap_core.c | 3 ++-
>   1 file changed, 2 insertions(+), 1 deletion(-)
> 
> --
> 2.37.2
> 
> 
Acked-by: Tim Gardner <tim.gardner@canonical.com>
Timo Aaltonen Feb. 7, 2023, 2:34 p.m. UTC | #2 
Cengiz Can kirjoitti 26.1.2023 klo 22.37:
> [Impact]
> An issue was discovered in the Linux kernel through 6.0.10. l2cap_config_req in
> net/bluetooth/l2cap_core.c has an integer wraparound via L2CAP_CONF_REQ packets.
> 
> [Fix]
> Clean cherry-pick.
> 
> [Test case]
> Compile, boot and basic functionality tested with l2test.
> 
> [Potential regression]
> Low. Fix only adds an overflow check.
> 
> Sungwoo Kim (1):
>    Bluetooth: L2CAP: Fix u8 overflow
> 
>   net/bluetooth/l2cap_core.c | 3 ++-
>   1 file changed, 2 insertions(+), 1 deletion(-)
> 
> --
> 2.37.2
> 
> 

applied to oem-6.0, thanks