Description
In the Linux kernel, the following vulnerability has been resolved: ipmi: Rework user message limit handling The limit on the number of user messages had a number of issues, improper counting in some cases and a use after free. Restructure how this is all done to handle more in the receive message allocation routine, so all refcouting and user message limit counts are done in that routine. It's a lot cleaner and safer.
Product status
8e76741c3d8b20dfa2d6c30fa10ff927cfd93d82 (git) before f63723ca7d7623f9dae1990973cd158671f03c56
8e76741c3d8b20dfa2d6c30fa10ff927cfd93d82 (git) before 348121b29594d42d1635648fd3ed31dfa25351d5
8e76741c3d8b20dfa2d6c30fa10ff927cfd93d82 (git) before 53d6e403affbf6df2c859a0ea00ccfc1e72090ca
8e76741c3d8b20dfa2d6c30fa10ff927cfd93d82 (git) before 0ed73be9a2547ffb9b5c1d879ad9bfab73d920b5
8e76741c3d8b20dfa2d6c30fa10ff927cfd93d82 (git) before b52da4054ee0bf9ecb44996f2c83236ff50b3812
5.19
Any version before 5.19
6.1.157 (semver)
6.6.113 (semver)
6.12.54 (semver)
6.17.4 (semver)
6.18 (original_commit_for_fix)
References
git.kernel.org/...c/f63723ca7d7623f9dae1990973cd158671f03c56
git.kernel.org/...c/348121b29594d42d1635648fd3ed31dfa25351d5
git.kernel.org/...c/53d6e403affbf6df2c859a0ea00ccfc1e72090ca
git.kernel.org/...c/0ed73be9a2547ffb9b5c1d879ad9bfab73d920b5
git.kernel.org/...c/b52da4054ee0bf9ecb44996f2c83236ff50b3812
