summaryrefslogtreecommitdiffstats
path: root/retired/CVE-2022-1198
blob: d0dd0faffeefd49a740e57f9c9e9a62578b03ffc (plain) (blame) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19

Description: use-after-free in drivers/net/hamradio/6pack.c
References:
 https://www.openwall.com/lists/oss-security/2022/04/02/3
 https://bugzilla.redhat.com/show_bug.cgi?id=2070689
Notes:
 bwh> I'm not sure how old this is but it seems to be present back to 4.9.
 bwh> This depeneds on commits 0b9111922b1f "hamradio: defer 6pack kfree
 bwh> after unregister_netdev" and 81b1d548d00b "hamradio: remove
 bwh> needs_free_netdev to avoid UAF", but those are *not* yet included
 bwh> in the stable backports.
Bugs:
upstream: released (5.17-rc6) [efe4186e6a1b54bf38b9e05450d43b0da1fd7739]
5.10-upstream-stable: released (5.10.110) [f67a1400788f550d201c71aeaf56706afe57f0da]
4.19-upstream-stable: released (4.19.238) [79e2f40c210a47f283bca352745068207798fbb9]
4.9-upstream-stable: released (4.9.311) [45d1a63bacf2b6ab27f9b11b5a2431e19d34d01f]
sid: released (5.16.18-1)
5.10-bullseye-security: released (5.10.113-1)
4.19-buster-security: released (4.19.249-1)
4.9-stretch-security: released (4.9.320-2)

© 2014-2024 Faster IT GmbH | imprint | privacy policy