Security tracker / CVE-2022-49183

CVE-2022-49183

net/sched: act_ct: fix ref leak when switching zones

References

• Debian security tracker
• cve.org

Notes

 carnil> Introduced in 2f131de361f6 ("net/sched: act_ct: Fix flow table lookup after ct
 carnil> clear or switching zones"). Vulnerable versions: 5.10.103 5.15.26 5.16.12
 carnil> 5.17-rc6.

Bugs

Status

Branch	Status
upstream	released (5.18-rc1) [bcb74e132a76ce0502bb33d5b65533a4ed72d159]
6.18-upstream-stable	N/A "Fixed before branching point"
6.17-upstream-stable	N/A "Fixed before branching point"
6.13-upstream-stable	N/A "Fixed before branching point"
6.12-upstream-stable	N/A "Fixed before branching point"
6.6-upstream-stable	N/A "Fixed before branching point"
6.1-upstream-stable	N/A "Fixed before branching point"
5.10-upstream-stable	needed
sid	released (5.17.3-1)
6.12-trixie-security	N/A "Fixed before branching point"
6.1-bookworm-security	N/A "Fixed before branching point"
5.10-bullseye-security	needed