2089 – [Anolis OS 7] Bugfix for CVE-2022-2639

Bug 2089 - [Anolis OS 7] Bugfix for CVE-2022-2639

Summary: [Anolis OS 7] Bugfix for CVE-2022-2639

Status:	RESOLVED DUPLICATE of bug 2088

Alias:	None

Product:	Anolis OS 7
Classification:	Anolis OS
Component:	BaseOS Packages (show other bugs)	BaseOS Packages
Sub Component:
Version:	7.7
Hardware:	All Linux

Importance:	P3-Medium S3-normal
Target Milestone:	---
Assignee:	杨晓旋
QA Contact:	杨晓旋

URL:
Whiteboard:
Keywords:	CVE

Depends on:
Blocks:

Reported:	2022-09-07 11:41 UTC by 小龙
Modified:	2022-09-07 11:46 UTC (History)
CC List:	2 users (show)

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description 小龙 admin

2022-09-07 11:41:36 UTC

An integer coercion error was found in the openvswitch kernel module. Given a sufficiently large number of actions, while copying and reserving memory for a new action of a new flow, the reserve_sfa_size() function does not return -EMSGSIZE as expected, potentially leading to an out-of-bounds write access. This flaw allows a local user to crash or potentially escalate their privileges on the system.

上游软件包修复情况：
软件包：kernel 影响版本：5.16 修复版本：

Comment 1 Shiloong admin

2022-09-07 11:46:36 UTC

duplicated by Xiaolong robot

*** This bug has been marked as a duplicate of bug 2088 ***