Re: [External] : Re: CVE-2023-52628: netfilter: nftables: exthdr: fix 4-byte stack OOB write

From: Siddh Raman Pant
Date: Tue Jul 09 2024 - 01:27:32 EST

Next message: OGAWA Hirofumi: "Re: [PATCH] fat: print s_dev via fat_msg"
Previous message: Greg KH: "Re: [PATCH v8 0/2] binder: frozen notification"
In reply to: gregkh@xxxxxxxxxxxxxxxxxxx: "Re: CVE-2023-52628: netfilter: nftables: exthdr: fix 4-byte stack OOB write"
Next in thread: gregkh@xxxxxxxxxxxxxxxxxxx: "Re: [External] : Re: CVE-2023-52628: netfilter: nftables: exthdr: fix 4-byte stack OOB write"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, Jul 09 2024 at 10:49:59 +0530, gregkh@xxxxxxxxxxxxxxxxxxx
wrote:
> On Tue, Jul 09, 2024 at 03:48:29AM +0000, Siddh Raman Pant wrote:
> > Is this a duplicate of CVE-2023-4881? It was rejected with the reason:
> >
> > > https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4881
> > >
> > > ** REJECT ** CVE-2023-4881 was wrongly assigned to a bug that was
> > > deemed to be a non-security issue by the Linux kernel security team.
>
> I don't know, where is the information about that older rejected issue?
> If this isn't an issue, we will be glad to reject it.

https://nvd.nist.gov/vuln/detail/CVE-2023-4881 (see analysis
description where it just describes the issue).

Or just https://bugzilla.redhat.com/show_bug.cgi?id=2238312

I'm unable to find a rejection reason though, maybe that's on a private
mailing list.

Thanks,
Siddh

Attachment: signature.asc
Description: This is a digitally signed message part

Next message: OGAWA Hirofumi: "Re: [PATCH] fat: print s_dev via fat_msg"
Previous message: Greg KH: "Re: [PATCH v8 0/2] binder: frozen notification"
In reply to: gregkh@xxxxxxxxxxxxxxxxxxx: "Re: CVE-2023-52628: netfilter: nftables: exthdr: fix 4-byte stack OOB write"
Next in thread: gregkh@xxxxxxxxxxxxxxxxxxx: "Re: [External] : Re: CVE-2023-52628: netfilter: nftables: exthdr: fix 4-byte stack OOB write"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]