Headline
CVE-2023-3022: ipv6: Use result arg in fib_lookup_arg consistently · torvalds/linux@a65120b
A flaw was found in the IPv6 module of the Linux kernel. The arg.result was not used consistently in fib6_rule_lookup, sometimes holding rt6_info and other times fib6_info. This was not accounted for in other parts of the code where rt6_info was expected unconditionally, potentially leading to a kernel panic in fib6_rule_suppress.
Commit
Permalink
Browse files
Browse the repository at this point in the history
ipv6: Use result arg in fib_lookup_arg consistently
arg.result is sometimes used as fib6_result and sometimes used to hold the rt6_info. Add rt6_info to fib6_result and make the use of arg.result consistent through ipv6 rules.
The rt6 entry is filled in for lookups returning a dst_entry, but not for direct fib_lookups that just want a fib6_info.
Fixes: effda4d (“ipv6: Pass fib6_result to fib lookups”) Signed-off-by: David Ahern [email protected] Signed-off-by: David S. Miller [email protected]
- Loading branch information