Nixpkgs security tracker

Login with GitHub
⚠️ You are using a production deployment that is still only suitable for demo purposes. Any work done in this might be wiped later without notice.

Suggestion detail

Dismissed
(max. allowed matches exceeded)
created 3 weeks ago Activity log
  • Created & dismissed (max. allowed matches exceeded) suggestion
ipv6: fix possible UAF in icmpv6_rcv()

In the Linux kernel, the following vulnerability has been resolved: ipv6: fix possible UAF in icmpv6_rcv() Caching saddr and daddr before pskb_pull() is problematic since skb->head can change. Remove these temporary variables: - We only access &ipv6_hdr(skb)->saddr and &ipv6_hdr(skb)->daddr when net_dbg_ratelimited() is called in the slow path. - Avoid potential future misuse after pskb_pull() call.

Affected products

Linux
  • <7c66b368c6ff453f99cb39d84af93e908e51eef2
  • <f996edd7615e686ada141b7f3395025729ff8ccb
  • =<5.15.*
  • ==4.4
  • =<6.18.*
  • <0069813e6ca9309eca78022bcb3aeb1e9ef90a12
  • =<6.12.*
  • <085e31a811ef234ef8c3e219c4636dfebfe7e10f
  • =<7.0.*
  • =<*
  • <aff0f28f5be803de2452ce702631c021fcd9ce8a
  • <7bff2c8fe5c35ae58bf73104f53db3676e6e5d94
  • <38bdbc897c0d83a3e2b925a51b69420f1feba29a
  • <4.4
  • =<6.1.*
  • =<5.10.*
  • <1e1f0f89ee4692a64be3f3707ff8ac1ae57b03e7
  • =<6.6.*