pve-kernel

proxmox-mirrors/pve-kernel

Fork 0

mirror of https://git.proxmox.com/git/pve-kernel synced 2025-08-15 08:20:53 +00:00

Commit Graph

Author SHA1 Message Date

Author	SHA1	Message	Date
Fiona Ebner	0753a7ab5e	backport fixes for missing verification for short frames in network tap/tun devices A malicious guest with virtio-net device could apparently crash the host [0]. Fixes CVE-2024-41090 and CVE-2024-41091. Reported in the community forum [1]. [0]: https://seclists.org/oss-sec/2024/q3/110 [1]: https://forum.proxmox.com/threads/151813/ Signed-off-by: Fiona Ebner <f.ebner@proxmox.com> (cherry picked from commit `a791b86e0a`) FG: renumbered Signed-off-by: Fabian Grünbichler <f.gruenbichler@proxmox.com>	2024-07-26 14:34:30 +02:00

Fiona Ebner

0753a7ab5e

backport fixes for missing verification for short frames in network tap/tun devices

A malicious guest with virtio-net device could apparently crash the
host [0]. Fixes CVE-2024-41090 and CVE-2024-41091. Reported in the
community forum [1].

[0]: https://seclists.org/oss-sec/2024/q3/110
[1]: https://forum.proxmox.com/threads/151813/

Signed-off-by: Fiona Ebner <f.ebner@proxmox.com>
(cherry picked from commit a791b86e0a)
FG: renumbered
Signed-off-by: Fabian Grünbichler <f.gruenbichler@proxmox.com>

2024-07-26 14:34:30 +02:00

1 Commits