]> git.proxmox.com Git - pve-kernel.git/commit
projects / pve-kernel.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 69b55c5) | patch
backport fixes for missing verification for short frames in network tap/tun devices
authorFiona Ebner <f.ebner@proxmox.com>
Fri, 26 Jul 2024 11:10:44 +0000 (13:10 +0200)
committerFabian Grünbichler <f.gruenbichler@proxmox.com>
Fri, 26 Jul 2024 11:13:20 +0000 (13:13 +0200)
commita791b86e0a851967b699eaec132b977284cf55a8
tree5c207de3242ba2b5296ee35205d682dcad838603tree
parent69b55c504cab6549ee4ddcf8cef87c32699fbdb0commit | diff
backport fixes for missing verification for short frames in network tap/tun devices

A malicious guest with virtio-net device could apparently crash the
host [0]. Fixes CVE-2024-41090 and CVE-2024-41091. Reported in the
community forum [1].

[0]: https://seclists.org/oss-sec/2024/q3/110
[1]: https://forum.proxmox.com/threads/151813/

Signed-off-by: Fiona Ebner <f.ebner@proxmox.com>
patches/kernel/0021-tap-add-missing-verification-for-short-frame.patch [new file with mode: 0644] blob
patches/kernel/0022-tun-add-missing-verification-for-short-frame.patch [new file with mode: 0644] blob
Linux Kernel for Proxmox projects