summaryrefslogtreecommitdiffstats
path: root/retired/CVE-2023-35001
blob: 2e32a1e793c5250c9b11bc55c3fbbb966ce8f93d (plain) (blame) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19

Description: nf_tables nft_byteorder_eval OOB read/write
References:
 https://www.openwall.com/lists/oss-security/2023/07/05/3
 https://lore.kernel.org/netfilter-devel/20230705121515.747251-1-cascardo@canonical.com/T/
 https://git.kernel.org/pub/scm/linux/kernel/git/netfilter/nf.git/commit/?id=caf3ef7468f7534771b5c44cd8dbd6f7f87c2cbd
 https://www.zerodayinitiative.com/advisories/ZDI-23-900/
Notes:
 carnil> Introduced with 96518518cc41 ("netfilter: add nftables") in
 carnil> 3.13-rc1.
 carnil> For 6.4.y fixed as well in 6.4.4.
Bugs:
upstream: released (6.5-rc2) [caf3ef7468f7534771b5c44cd8dbd6f7f87c2cbd]
6.1-upstream-stable: released (6.1.39) [40f83dd66a823400d8592e3b71e190e3ad978eb5]
5.10-upstream-stable: released (5.10.188) [ea213922249c7e448d217a0a0441c6f86a8155fd]
4.19-upstream-stable: released (4.19.291) [025fd7efe2639773540a5e425b7bc0dc10b6b023]
sid: released (6.4.4-1)
6.1-bookworm-security: released (6.1.38-1) [bugfix/all/netfilter-nf_tables-prevent-OOB-access-in-nft_byteor.patch]
5.10-bullseye-security: released (5.10.179-2) [bugfix/all/netfilter-nf_tables-prevent-OOB-access-in-nft_byteor.patch]
4.19-buster-security: released (4.19.304-1)

© 2014-2024 Faster IT GmbH | imprint | privacy policy