CVE-2022-43945

nfsd: Buffer overflows in READ/READDIR send buffers

References

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=f90497a16e434c2211c66e3de8e77b17868382b8
https://lore.kernel.org/linux-nfs/B00F6DD5-8215-457B-A681-39D7A64B7668@oracle.com/
https://lore.kernel.org/linux-nfs/Y8vyFuQ0UdiiEJRw@eldamar.lan/T/#t

Notes

 carnil> Fixed in 5.19.17 for 5.19.y and in 6.0.3 for 6.0.y.
 bwh> The affected code was changed in 5.12, 5.13, and 5.15.
 bwh> It's not yet clear to me whether earlier versions are also
 bwh> affected.
 jmm> Per Neil Brown's comment at https://bugzilla.suse.com/show_bug.cgi?id=1205128#c4 older kernels are also affected

Bugs

Status

Branch	Status
4.19-buster-security	needed
4.19-upstream-stable	needed
5.10-bullseye-security	needed
5.10-upstream-stable	needed
6.1-bookworm-security	N/A "Fixed before branch point"
6.1-upstream-stable	N/A "Fixed before branch point"
6.6-upstream-stable	unknown
6.8-upstream-stable	unknown
sid	released (6.0.3-1)
upstream	released (6.1-rc1) [00b4492686e0497fdb924a9d4c8f6f99377e176c, 640f87c190e0d1b2a0fcb2ecf6d2cd53b1c41991, 401bc1f90874280a80b93f23be33a0e7e2d1f912, fa6be9cc6e80ec79892ddf08a8c10cabab9baf38]