Security tracker / CVE-2022-48744

CVE-2022-48744

net/mlx5e: Avoid field-overflowing memcpy()

References

• Debian security tracker
• cve.org

Notes

 carnil> Introduced in b5503b994ed5 ("net/mlx5e: XDP TX forwarding support"). Vulnerable
 carnil> versions: 4.9-rc1.

Bugs

Status

Branch	Status
upstream	released (5.17-rc3) [ad5185735f7dab342fdd0dd41044da4c9ccfef67]
6.18-upstream-stable	N/A "Fixed before branching point"
6.17-upstream-stable	N/A "Fixed before branching point"
6.12-upstream-stable	N/A "Fixed before branching point"
6.9-upstream-stable	N/A "Fixed before branching point"
6.6-upstream-stable	N/A "Fixed before branching point"
6.1-upstream-stable	N/A "Fixed before branching point"
5.10-upstream-stable	needed
sid	released (5.16.7-1)
6.12-trixie-security	N/A "Fixed before branching point"
6.1-bookworm-security	N/A "Fixed before branching point"
5.10-bullseye-security	needed