CVE-2021-47014

net/sched: act_ct: fix wild memory access when clearing fragments

References

Notes

 carnil> Introduced in ae372cb1750f ("net/sched: act_ct: fix restore the qdisc_skb_cb
 carnil> after defrag")
 carnil> 7baf2429a1a9 ("net/sched: cls_flower add CT_FLAGS_INVALID flag support").
 carnil> Vulnerable versions: 5.7.12 5.8-rc7 5.12-rc1.

Bugs

Status

Branch	Status
upstream	released (5.13-rc1) [f77bd544a6bbe69aa50d9ed09f13494cf36ff806]
6.18-upstream-stable	N/A "Fixed before branching point"
6.17-upstream-stable	N/A "Fixed before branching point"
6.12-upstream-stable	N/A "Fixed before branching point"
6.7-upstream-stable	N/A "Fixed before branching point"
6.6-upstream-stable	N/A "Fixed before branching point"
6.1-upstream-stable	N/A "Fixed before branching point"
5.10-upstream-stable	needed
4.19-upstream-stable	N/A "Vulnerable code not present"
sid	released (5.14.6-1)
6.12-trixie-security	N/A "Fixed before branching point"
6.1-bookworm-security	N/A "Fixed before branching point"
5.10-bullseye-security	needed
4.19-buster-security	N/A "Vulnerable code not present"