blob: 00432b2e4d962a8ccf00f5a040ebcfd66d08dc8e (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
|
Description: use-after-free bug in mctp_sk_unhash in net/mctp/af_mctp.c
References:
https://bugzilla.redhat.com/show_bug.cgi?id=2142371
https://www.openwall.com/lists/oss-security/2022/11/14/1
Notes:
carnil> Introduced by 63ed1aab3d40 ("mctp: Add SIOCMCTP{ALLOC,DROP}TAG
carnil> ioctls for tag control") in 5.18-rc1.
carnil> Fixed as well in 6.0.2 for 6.0.y.
Bugs:
upstream: released (6.1-rc1) [3a732b46736cd8a29092e4b0b1a9ba83e672bf89]
5.10-upstream-stable: N/A "Vulnerable code not present"
4.19-upstream-stable: N/A "Vulnerable code not present"
sid: released (6.0.2-1)
5.10-bullseye-security: N/A "Vulnerable code not present"
4.19-buster-security: N/A "Vulnerable code not present"
|
