Fedora Account System
Red Hat Associate
Red Hat Customer
An issue was discovered in fl_set_geneve_opt in net/sched/cls_flower.c in the Linux kernel before 6.3.7. It allows an out-of-bounds write in the flower classifier code via TCA_FLOWER_KEY_ENC_OPTS_GENEVE packets. This may result in denial of service or privilege escalation. Reference: https://www.openwall.com/lists/oss-security/2023/06/07/1 Upstream fix: https://github.com/torvalds/linux/commit/4d56304e5827c8cc8cc18c75343d283af7c4825c
Created kernel tracking bugs for this issue: Affects: fedora-all [bug 2216979]
*** Bug 2214024 has been marked as a duplicate of this bug. ***
This was fixed for Fedora with the 6.3.7 stable kernel updates.
This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2023:4378 https://access.redhat.com/errata/RHSA-2023:4378
This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2023:4380 https://access.redhat.com/errata/RHSA-2023:4380
This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2023:4377 https://access.redhat.com/errata/RHSA-2023:4377
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions Via RHSA-2023:4516 https://access.redhat.com/errata/RHSA-2023:4516
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions Via RHSA-2023:4515 https://access.redhat.com/errata/RHSA-2023:4515
This issue has been addressed in the following products: Red Hat Enterprise Linux 7.7 Advanced Update Support Red Hat Enterprise Linux 7.7 Update Services for SAP Solutions Red Hat Enterprise Linux 7.7 Telco Extended Update Support Via RHSA-2023:4697 https://access.redhat.com/errata/RHSA-2023:4697
This issue has been addressed in the following products: Red Hat Enterprise Linux 7.7 Update Services for SAP Solutions Via RHSA-2023:4698 https://access.redhat.com/errata/RHSA-2023:4698
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.6 Extended Update Support Via RHSA-2023:4789 https://access.redhat.com/errata/RHSA-2023:4789
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.2 Telecommunications Update Service Via RHSA-2023:4817 https://access.redhat.com/errata/RHSA-2023:4817
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2023:4821 https://access.redhat.com/errata/RHSA-2023:4821
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.2 Advanced Update Support Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions Red Hat Enterprise Linux 8.2 Telecommunications Update Service Via RHSA-2023:4815 https://access.redhat.com/errata/RHSA-2023:4815
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions Via RHSA-2023:4829 https://access.redhat.com/errata/RHSA-2023:4829
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2023:4819 https://access.redhat.com/errata/RHSA-2023:4819
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2023:4834 https://access.redhat.com/errata/RHSA-2023:4834
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.6 Extended Update Support Via RHSA-2023:4888 https://access.redhat.com/errata/RHSA-2023:4888
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions Red Hat Enterprise Linux 8.4 Telecommunications Update Service Via RHSA-2023:4961 https://access.redhat.com/errata/RHSA-2023:4961
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions Red Hat Enterprise Linux 8.4 Telecommunications Update Service Via RHSA-2023:4962 https://access.redhat.com/errata/RHSA-2023:4962
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions Via RHSA-2023:4967 https://access.redhat.com/errata/RHSA-2023:4967
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2023:5221 https://access.redhat.com/errata/RHSA-2023:5221
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2023:5255 https://access.redhat.com/errata/RHSA-2023:5255
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2023:5244 https://access.redhat.com/errata/RHSA-2023:5244
This issue has been addressed in the following products: Red Hat Enterprise Linux 9.0 Extended Update Support Via RHSA-2023:5575 https://access.redhat.com/errata/RHSA-2023:5575
This issue has been addressed in the following products: Red Hat Enterprise Linux 9.0 Extended Update Support Via RHSA-2023:5603 https://access.redhat.com/errata/RHSA-2023:5603
This issue has been addressed in the following products: Red Hat Enterprise Linux 9.0 Extended Update Support Via RHSA-2023:5604 https://access.redhat.com/errata/RHSA-2023:5604
Noted security issue in cls_flower, Linux kernel 6.3.7. Denial of service or privilege escalation risk. References available. http://mostlyboating.com/who-invented-the-canoe/