retired/CVE-2021-47136


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18

Description: net: zero-initialize tc skb extension on allocation
References:
Notes:
 carnil> Introduced in 038ebb1a713d ("net/sched: act_ct: fix miss set mru for ovs after
 carnil> defrag in act_ct")
 carnil> d29334c15d33 ("net/sched: act_api: fix miss set post_ct for ovs after do
 carnil> conntrack in act_ct"). Vulnerable versions: 5.7.15 5.9-rc1 5.12-rc5.
Bugs:
upstream: released (5.13-rc4) [9453d45ecb6c2199d72e73c993e9d98677a2801b]
6.7-upstream-stable: N/A "Fixed before branching point"
6.6-upstream-stable: N/A "Fixed before branching point"
6.1-upstream-stable: N/A "Fixed before branching point"
5.10-upstream-stable: released (5.10.42) [ac493452e937b8939eaf2d24cac51a4804b6c20e]
4.19-upstream-stable: N/A "Vulnerable code not present"
sid: released (5.14.6-1)
6.1-bookworm-security: N/A "Fixed before branching point"
5.10-bullseye-security: released (5.10.46-1)
4.19-buster-security: N/A "Vulnerable code not present"