linux-stable

mirror of https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git synced 2024-09-12 21:57:43 +00:00

No description

Find a file

Thadeu Lima de Souza Cascardo fab2f61cc3 netfilter: nf_tables: do not allow SET_ID to refer to another table commit `470ee20e06` upstream. When doing lookups for sets on the same batch by using its ID, a set from a different table can be used. Then, when the table is removed, a reference to the set may be kept after the set is freed, leading to a potential use-after-free. When looking for sets by ID, use the table that was used for the lookup by name, and only return sets belonging to that same table. This fixes CVE-2022-2586, also reported as ZDI-CAN-17470. Reported-by: Team Orca of Sea Security (@seasecresponse) Fixes: `958bee14d0` ("netfilter: nf_tables: use new transaction infrastructure to handle sets") Signed-off-by: Thadeu Lima de Souza Cascardo <cascardo@canonical.com> Cc: <stable@vger.kernel.org> Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>		2022-08-25 11:17:27 +02:00
arch	arm64: dts: uniphier: Fix USB interrupts for PXs3 SoC	2022-08-25 11:17:27 +02:00
block	block: fix bio_clone_blkg_association() to associate with proper blkcg_gq	2022-06-14 18:11:50 +02:00
certs	certs/blacklist_hashes.c: fix const confusion in certs blacklist	2022-06-22 14:11:22 +02:00
crypto	crypto: drbg - make reseeding from get_random_bytes() synchronous	2022-06-22 14:11:18 +02:00
Documentation	x86/speculation: Add RSB VM Exit protections	2022-08-11 12:57:53 +02:00
drivers	USB: HCD: Fix URB giveback issue in tasklet function	2022-08-25 11:17:26 +02:00
fs	fuse: limit nsec	2022-08-25 11:17:24 +02:00
include	USB: HCD: Fix URB giveback issue in tasklet function	2022-08-25 11:17:26 +02:00
init	random: handle latent entropy and command line from random_init()	2022-06-22 14:11:17 +02:00
ipc	ipc/mqueue: use get_tree_nodev() in mqueue_get_tree()	2022-06-14 18:11:41 +02:00
kernel	bpf: Verifer, adjust_scalar_min_max_vals to always call update_reg_bounds()	2022-08-11 12:57:51 +02:00
lib	locking/refcount: Consolidate implementations of refcount_t	2022-07-29 17:14:17 +02:00
LICENSES
mm	mm/mremap: hold the rmap lock in write mode when moving page table entries.	2022-08-25 11:17:20 +02:00
net	netfilter: nf_tables: do not allow SET_ID to refer to another table	2022-08-25 11:17:27 +02:00
samples	samples/kretprobes: Fix return value if register_kretprobe() failed	2021-11-17 09:48:39 +01:00
scripts	modpost: fix section mismatch check for exported init/exit sections	2022-06-29 08:58:49 +02:00
security	ima: remove the IMA_TEMPLATE Kconfig option	2022-07-29 17:14:16 +02:00
sound	ALSA: hda/realtek: Add quirk for another Asus K42JZ model	2022-08-25 11:17:21 +02:00
tools	x86/speculation: Add RSB VM Exit protections	2022-08-11 12:57:53 +02:00
usr
virt	KVM: Don't null dereference ops->destroy	2022-08-11 12:57:52 +02:00
.clang-format
.cocciconfig
.get_maintainer.ignore
.gitattributes
.gitignore
.mailmap
COPYING
CREDITS
Kbuild
Kconfig
MAINTAINERS	MAINTAINERS: co-maintain random.c	2022-06-22 14:11:05 +02:00
Makefile	Makefile: link with -z noexecstack --no-warn-rwx-segments	2022-08-25 11:17:17 +02:00
README

README

Linux kernel
============

There are several guides for kernel developers and users. These guides can
be rendered in a number of formats, like HTML and PDF. Please read
Documentation/admin-guide/README.rst first.

In order to build the documentation, use ``make htmldocs`` or
``make pdfdocs``.  The formatted documentation can also be read online at:

    https://www.kernel.org/doc/html/latest/

There are various text files in the Documentation/ subdirectory,
several of them using the Restructured Text markup notation.

Please read the Documentation/process/changes.rst file, as it contains the
requirements for building and running the kernel, and information about
the problems which may result by upgrading your kernel.