| Message ID | 20221018174312.3383944-1-cascardo@canonical.com |
|---|---|
| Headers | show |
| Series | wlan CVE fixes | expand |
On 10/18/22 11:43 AM, Thadeu Lima de Souza Cascardo wrote: > This fixes CVE-2022-41674, CVE-2022-42719, CVE-2022-42720, CVE-2022-42721 and CVE-2022-42722. > > Johannes Berg (9): > wifi: cfg80211: fix u8 overflow in > cfg80211_update_notlisted_nontrans() > wifi: cfg80211/mac80211: reject bad MBSSID elements > wifi: mac80211: fix MBSSID parsing use-after-free > wifi: cfg80211: ensure length byte is present before access > wifi: cfg80211: fix BSS refcounting bugs > wifi: cfg80211: avoid nontransmitted BSS list corruption > wifi: mac80211_hwsim: avoid mac80211 warning on bad rate > wifi: mac80211: fix crash in beacon protection for P2P-device > wifi: cfg80211: update hidden BSSes to avoid WARN_ON > > drivers/net/wireless/mac80211_hwsim.c | 2 + > net/mac80211/ieee80211_i.h | 8 +++ > net/mac80211/rx.c | 12 +++-- > net/mac80211/util.c | 32 +++++------ > net/wireless/scan.c | 77 +++++++++++++++++---------- > 5 files changed, 84 insertions(+), 47 deletions(-) > Acked-by: Tim Gardner <tim.gardner@canonical.com>
Acked-by: Luke Nowakowski-Krijger <luke.nowakowskikrijger@canonical.com> On Tue, Oct 18, 2022 at 10:44 AM Thadeu Lima de Souza Cascardo < cascardo@canonical.com> wrote: > This fixes CVE-2022-41674, CVE-2022-42719, CVE-2022-42720, CVE-2022-42721 > and CVE-2022-42722. > > Johannes Berg (9): > wifi: cfg80211: fix u8 overflow in > cfg80211_update_notlisted_nontrans() > wifi: cfg80211/mac80211: reject bad MBSSID elements > wifi: mac80211: fix MBSSID parsing use-after-free > wifi: cfg80211: ensure length byte is present before access > wifi: cfg80211: fix BSS refcounting bugs > wifi: cfg80211: avoid nontransmitted BSS list corruption > wifi: mac80211_hwsim: avoid mac80211 warning on bad rate > wifi: mac80211: fix crash in beacon protection for P2P-device > wifi: cfg80211: update hidden BSSes to avoid WARN_ON > > drivers/net/wireless/mac80211_hwsim.c | 2 + > net/mac80211/ieee80211_i.h | 8 +++ > net/mac80211/rx.c | 12 +++-- > net/mac80211/util.c | 32 +++++------ > net/wireless/scan.c | 77 +++++++++++++++++---------- > 5 files changed, 84 insertions(+), 47 deletions(-) > > -- > 2.34.1 > > > -- > kernel-team mailing list > kernel-team@lists.ubuntu.com > https://lists.ubuntu.com/mailman/listinfo/kernel-team >
Thadeu Lima de Souza Cascardo kirjoitti 18.10.2022 klo 20.43: > This fixes CVE-2022-41674, CVE-2022-42719, CVE-2022-42720, CVE-2022-42721 and CVE-2022-42722. > > Johannes Berg (9): > wifi: cfg80211: fix u8 overflow in > cfg80211_update_notlisted_nontrans() > wifi: cfg80211/mac80211: reject bad MBSSID elements > wifi: mac80211: fix MBSSID parsing use-after-free > wifi: cfg80211: ensure length byte is present before access > wifi: cfg80211: fix BSS refcounting bugs > wifi: cfg80211: avoid nontransmitted BSS list corruption > wifi: mac80211_hwsim: avoid mac80211 warning on bad rate > wifi: mac80211: fix crash in beacon protection for P2P-device > wifi: cfg80211: update hidden BSSes to avoid WARN_ON > > drivers/net/wireless/mac80211_hwsim.c | 2 + > net/mac80211/ieee80211_i.h | 8 +++ > net/mac80211/rx.c | 12 +++-- > net/mac80211/util.c | 32 +++++------ > net/wireless/scan.c | 77 +++++++++++++++++---------- > 5 files changed, 84 insertions(+), 47 deletions(-) > thanks, applied
This fixes CVE-2022-41674, CVE-2022-42719, CVE-2022-42720, CVE-2022-42721 and CVE-2022-42722. Johannes Berg (9): wifi: cfg80211: fix u8 overflow in cfg80211_update_notlisted_nontrans() wifi: cfg80211/mac80211: reject bad MBSSID elements wifi: mac80211: fix MBSSID parsing use-after-free wifi: cfg80211: ensure length byte is present before access wifi: cfg80211: fix BSS refcounting bugs wifi: cfg80211: avoid nontransmitted BSS list corruption wifi: mac80211_hwsim: avoid mac80211 warning on bad rate wifi: mac80211: fix crash in beacon protection for P2P-device wifi: cfg80211: update hidden BSSes to avoid WARN_ON drivers/net/wireless/mac80211_hwsim.c | 2 + net/mac80211/ieee80211_i.h | 8 +++ net/mac80211/rx.c | 12 +++-- net/mac80211/util.c | 32 +++++------ net/wireless/scan.c | 77 +++++++++++++++++---------- 5 files changed, 84 insertions(+), 47 deletions(-)