In the Linux kernel, the following vulnerability has been resolved:
netlabel: fix out-of-bounds memory accesses
There are two array out-of-bounds memory accesses, one in
cipso_v4_map_lvl_valid(), the other in netlbl_bitmap_walk(). Both
errors are embarassingly simple, and the fixes are straightforward.
As a FYI for anyone backporting this patch to kernels prior to v4.8,
you'll want to apply the netlbl_bitmap_walk() patch to
cipso_v4_bitmap_walk() as netlbl_bitmap_walk() doesn't exist before
Linux v4.8.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: Linux
Published: 2024-02-26T17:20:19.490Z
Updated: 2024-08-05T03:00:19.401Z
Reserved: 2024-02-26T17:07:20.465Z
Link: CVE-2019-25160
Vulnrichment
Updated: 2024-08-05T03:00:19.401Z
NVD
Status : Analyzed
Published: 2024-02-26T18:15:06.930
Modified: 2024-04-17T17:43:57.407
Link: CVE-2019-25160
Redhat