Re: [External] : Re: CVE-2023-52628: netfilter: nftables: exthdr: fix 4-byte stack OOB write

From: Siddh Raman Pant
Date: Tue Jul 09 2024 - 01:27:32 EST


On Tue, Jul 09 2024 at 10:49:59 +0530, gregkh@xxxxxxxxxxxxxxxxxxx
wrote:
> On Tue, Jul 09, 2024 at 03:48:29AM +0000, Siddh Raman Pant wrote:
> > Is this a duplicate of CVE-2023-4881? It was rejected with the reason:
> >
> > > https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4881
> > >
> > > ** REJECT ** CVE-2023-4881 was wrongly assigned to a bug that was
> > > deemed to be a non-security issue by the Linux kernel security team.
>
> I don't know, where is the information about that older rejected issue?
> If this isn't an issue, we will be glad to reject it.

https://nvd.nist.gov/vuln/detail/CVE-2023-4881 (see analysis
description where it just describes the issue).

Or just https://bugzilla.redhat.com/show_bug.cgi?id=2238312

I'm unable to find a rejection reason though, maybe that's on a private
mailing list.

Thanks,
Siddh

Attachment: signature.asc
Description: This is a digitally signed message part