blob: 1d7a30f2eb324a88b0956d1f7fce0c024dd38515 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
|
Description: heap overflow in bpf leading to LPE
References:
https://www.openwall.com/lists/oss-security/2018/11/23/6
https://marc.info/?l=linux-netdev&m=154290236228315&w=2
https://www.openwall.com/lists/oss-security/2018/11/23/8
Notes:
carnil> Problematic bpf function only introduced in 4.20-rc1
Bugs:
upstream: released (4.20-rc5) [813961de3ee6474dd5703e883471fd941d6c8f69]
4.9-upstream-stable: N/A "Vulnerable code introduced later"
3.16-upstream-stable: N/A "Vulnerable code introduced later"
sid: N/A "Vulnerable code not present"
4.9-stretch-security: N/A "Vulnerable code not present"
3.16-jessie-security: N/A "Vulnerable code not present"
|