Draft: Fix local privileges escalation in kernel/bpf/verifier.c (!535) · Merge requests · Red Hat / centos-stream / src / kernel / centos-stream-9

Jiri Olsa requested to merge jolsa1/centos-stream-9:bpf/cve into main Feb 15, 2022

Bugzilla: https://bugzilla.redhat.com/2053108

CVE: CVE-2022-23222

A flaw was found in the Linux kernel's adjust_ptr_min_max_vals in the kernel/bpf/verifier.c function. In this flaw, a missing sanity check for *_OR_NULL pointer types that perform pointer arithmetic may cause a kernel information leak issue.

Adding the fix plus dependency commits.

Signed-off-by: Jiri Olsa jolsa@redhat.com

Draft: Fix local privileges escalation in kernel/bpf/verifier.c

Merge request reports