CVE-2023-52637

can: j1939: Fix UAF in j1939_sk_match_filter during setsockopt(SO_J1939_FILTER)

References

Notes

 carnil> Introduced in 9d71dd0c70099 ("can: add support of SAE J1939 protocol").
 carnil> Vulnerable versions: 5.4-rc1.

Bugs

Status

Branch Status
4.19-buster-security N/A "Vulnerable code not present"
4.19-upstream-stable N/A "Vulnerable code not present"
5.10-bullseye-security released (5.10.216-1)
5.10-upstream-stable released (5.10.210) [978e50ef8c38dc71bd14d1b0143d554ff5d188ba]
6.1-bookworm-security released (6.1.82-1)
6.1-upstream-stable released (6.1.79) [4dd684d4bb3cd5454e0bf6e2a1bdfbd5c9c872ed]
6.6-upstream-stable released (6.6.18) [f84e7534457dcd7835be743517c35378bb4e7c50]
6.8-upstream-stable N/A "Fixed before branching point"
sid released (6.7.7-1)
upstream released (6.8-rc5) [efe7cf828039aedb297c1f9920b638fffee6aabc]