Home
HIGH: 7.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:HDefault status
unaffected
e420bed025071a623d2720a92bc2245c84757ecb (git) before 4e0772cded109c238411f2fac36ac39302758b81
affected
e420bed025071a623d2720a92bc2245c84757ecb (git) before 3f04cc1e5374da4c5e791ae010a06cfea7bacbe6
affected
e420bed025071a623d2720a92bc2245c84757ecb (git) before ae23bc81ddf7c17b663c4ed1b21e35527b0a7131
affected
Default status
affected
6.6
affected
Any version before 6.6
unaffected
6.18.14 (semver)
unaffected
6.19.4 (semver)
unaffected
7.0 (original_commit_for_fix)
unaffected
Description
In the Linux kernel, the following vulnerability has been resolved: bpf: Fix tcx/netkit detach permissions when prog fd isn't given This commit fixes a security issue where BPF_PROG_DETACH on tcx or netkit devices could be executed by any user when no program fd was provided, bypassing permission checks. The fix adds a capability check for CAP_NET_ADMIN or CAP_SYS_ADMIN in this case.
Product status
e420bed025071a623d2720a92bc2245c84757ecb (git) before 4e0772cded109c238411f2fac36ac39302758b81
e420bed025071a623d2720a92bc2245c84757ecb (git) before 3f04cc1e5374da4c5e791ae010a06cfea7bacbe6
e420bed025071a623d2720a92bc2245c84757ecb (git) before ae23bc81ddf7c17b663c4ed1b21e35527b0a7131
6.6
Any version before 6.6
6.18.14 (semver)
6.19.4 (semver)
7.0 (original_commit_for_fix)
References
git.kernel.org/...c/4e0772cded109c238411f2fac36ac39302758b81
git.kernel.org/...c/3f04cc1e5374da4c5e791ae010a06cfea7bacbe6
git.kernel.org/...c/ae23bc81ddf7c17b663c4ed1b21e35527b0a7131