blob: fbf47f7e780eb29c284189d67bda858f1c039fbd (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
|
Description: nfc: nci: fix the UAF of rf_conn_info object
References:
https://www.openwall.com/lists/oss-security/2021/10/26/2
Notes:
carnil> Fixed as well in 5.14.15 for 5.14.y.
bwh> Introduced in 4.0 by commits 12bdf27d46c9 "NFC: nci: Add reference to
bwh> the RF logical connection" and 15d4a8da0e44 "NFC: nci: Move logical
bwh> connection structure allocation".
carnil> CONFIG_NFC_NCI is not set in Debian.
Bugs:
upstream: released (5.15-rc6) [1b1499a817c90fd1ce9453a2c98d2a01cca0e775]
5.10-upstream-stable: released (5.10.76) [77c0ef979e32b8bc22f36a013bab77cd37e31530]
4.19-upstream-stable: released (4.19.214) [1ac0d736c8ae9b59ab44e4e80ad73c8fba5c6132]
4.9-upstream-stable: released (4.9.288) [8a44904ce83ebcb1281b04c8d37ad7f8ab537a3d]
sid: released (5.14.16-1)
5.10-bullseye-security: released (5.10.84-1)
4.19-buster-security: released (4.19.232-1)
4.9-stretch-security: released (4.9.290-1)
|
