In the Linux kernel, the following vulnerability has been resolved:
ipv6: fix potential “struct net” leak in inet6_rtm_getaddr()
It seems that if userspace provides a correct IFA_TARGET_NETNSID value
but no IFA_ADDRESS and IFA_LOCAL attributes, inet6_rtm_getaddr()
returns -EINVAL with an elevated “struct net” refcount.
Vendor | Product | Version | CPE |
---|---|---|---|
linux | linux_kernel | * | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
linux | linux_kernel | * | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
linux | linux_kernel | * | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
linux | linux_kernel | * | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
linux | linux_kernel | * | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
linux | linux_kernel | * | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
linux | linux_kernel | * | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
[
{
"product": "Linux",
"vendor": "Linux",
"defaultStatus": "unaffected",
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"programFiles": [
"net/ipv6/addrconf.c"
],
"versions": [
{
"version": "6ecf4c37eb3e",
"lessThan": "9d4ffb5b9d87",
"status": "affected",
"versionType": "git"
},
{
"version": "6ecf4c37eb3e",
"lessThan": "810fa7d5e520",
"status": "affected",
"versionType": "git"
},
{
"version": "6ecf4c37eb3e",
"lessThan": "8a54834c03c3",
"status": "affected",
"versionType": "git"
},
{
"version": "6ecf4c37eb3e",
"lessThan": "1b0998fdd857",
"status": "affected",
"versionType": "git"
},
{
"version": "6ecf4c37eb3e",
"lessThan": "44112bc5c74e",
"status": "affected",
"versionType": "git"
},
{
"version": "6ecf4c37eb3e",
"lessThan": "33a1b6bfef6d",
"status": "affected",
"versionType": "git"
},
{
"version": "6ecf4c37eb3e",
"lessThan": "10bfd453da64",
"status": "affected",
"versionType": "git"
}
]
},
{
"product": "Linux",
"vendor": "Linux",
"defaultStatus": "affected",
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"programFiles": [
"net/ipv6/addrconf.c"
],
"versions": [
{
"version": "4.20",
"status": "affected"
},
{
"version": "0",
"lessThan": "4.20",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "5.4.271",
"lessThanOrEqual": "5.4.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "5.10.212",
"lessThanOrEqual": "5.10.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "5.15.151",
"lessThanOrEqual": "5.15.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.1.81",
"lessThanOrEqual": "6.1.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.6.21",
"lessThanOrEqual": "6.6.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.7.9",
"lessThanOrEqual": "6.7.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.8",
"lessThanOrEqual": "*",
"status": "unaffected",
"versionType": "original_commit_for_fix"
}
]
}
]
git.kernel.org/stable/c/10bfd453da64a057bcfd1a49fb6b271c48653cdb
git.kernel.org/stable/c/1b0998fdd85776775d975d0024bca227597e836a
git.kernel.org/stable/c/33a1b6bfef6def2068c8703403759024ce17053e
git.kernel.org/stable/c/44112bc5c74e64f28f5a9127dc34066c7a09bd0f
git.kernel.org/stable/c/810fa7d5e5202fcfb22720304b755f1bdfd4c174
git.kernel.org/stable/c/8a54834c03c30e549c33d5da0975f3e1454ec906
git.kernel.org/stable/c/9d4ffb5b9d879a75e4f7460e8b10e756b4dfb132