retired/CVE-2022-42432


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15

Description: netfilter: nfnetlink_osf: fix possible bogus match in nf_osf_find()
References:
 https://patchwork.ozlabs.org/project/netfilter-devel/patch/20220907082618.1193201-1-pablo@netfilter.org/
 https://www.zerodayinitiative.com/advisories/ZDI-22-1457/
Notes:
 carnil> Commit fixes 22c7652cdaa8 ("netfilter: nft_osf: Add version
 carnil> option support") in 5.2-rc1.
Bugs:
upstream: released (6.0-rc7) [559c36c5a8d730c49ef805a72b213d3bba155cc8]
6.1-upstream-stable: N/A "Fixed before branching point"
5.10-upstream-stable: released (5.10.146) [5d75fef3e61e797fab5c3fbba88caa74ab92ad47]
4.19-upstream-stable: N/A "Vulnerable code not present"
sid: released (6.0.2-1)
5.10-bullseye-security: released (5.10.148-1)
4.19-buster-security: N/A "Vulnerable code not present"