References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to [email protected].

Change History

In the Linux kernel, the following vulnerability has been resolved:

batman-adv: fix OOB read/write in network-coding decode

batadv_nc_skb_decode_packet() trusts coded_len and checks only against
skb->len. XOR starts at sizeof(struct batadv_unicast_packet), reducing
payload headroom, and the source skb length is not verified, allowing an
out-of-bounds read and a small out-of-bounds write.

Validate that coded_len fits within the payload area of both destination
and source sk_buffs before XORing.

https://git.kernel.org/stable/c/1e36c6c8dc8023b4bbe9a16e819f9998b9b6a183

https://git.kernel.org/stable/c/20080709457bc1e920eb002483d7d981d9b2ac1c

https://git.kernel.org/stable/c/30fc47248f02b8a14a61df469e1da4704be1a19f

https://git.kernel.org/stable/c/5d334bce9fad58cf328d8fa14ea1fff855819863

https://git.kernel.org/stable/c/a67c6397fcb7e842d3c595243049940970541c48

https://git.kernel.org/stable/c/bb37252c9af1cb250f34735ee98f80b46be3cef1

https://git.kernel.org/stable/c/d77b6ff0ce35a6d0b0b7b9581bc3f76d041d4087

https://git.kernel.org/stable/c/dce6c2aa70e94c04c523b375dfcc664d7a0a560a