Global infos:

In the Linux kernel, the following vulnerability has been resolved: smackfs: restrict bytes count in smk_set_cipso() Oops, I failed to update subject line. From 07571157c91b98ce1a4aa70967531e64b78e8346 Mon Sep 17 00:00:00 2001 Date: Mon, 12 Apr 2021 22:25:06 +0900 Subject: [PATCH] smackfs: restrict bytes count in smk_set_cipso() Commit 7ef4c19d245f3dc2 ("smackfs: restrict bytes count in smackfs write functions") missed that count > SMK_CIPSOMAX check applies to only format == SMK_FIXED24_FMT case.

CVE Status: Awaiting Analysis

References:

416baaa9-dc9f-4396-8d5f-8c081fb06d67

416baaa9-dc9f-4396-8d5f-8c081fb06d67

416baaa9-dc9f-4396-8d5f-8c081fb06d67

416baaa9-dc9f-4396-8d5f-8c081fb06d67

416baaa9-dc9f-4396-8d5f-8c081fb06d67

416baaa9-dc9f-4396-8d5f-8c081fb06d67

416baaa9-dc9f-4396-8d5f-8c081fb06d67

416baaa9-dc9f-4396-8d5f-8c081fb06d67

af854a3a-2127-422b-91ae-364da2661108

af854a3a-2127-422b-91ae-364da2661108

af854a3a-2127-422b-91ae-364da2661108

af854a3a-2127-422b-91ae-364da2661108

af854a3a-2127-422b-91ae-364da2661108

af854a3a-2127-422b-91ae-364da2661108

af854a3a-2127-422b-91ae-364da2661108

af854a3a-2127-422b-91ae-364da2661108

Metrics:

No CVSS data available

Links:

Exploit-db
Github