CVE-2024-26641

ip6_tunnel: make sure to pull inner header in __ip6_tnl_rcv()

References

Notes

 carnil> Introduced in 0d3c703a9d17 ("ipv6: Cleanup IPv6 tunnel receive path").
 carnil> Vulnerable versions: 4.7-rc1.

Bugs

Status

Branch Status
4.19-buster-security needed
4.19-upstream-stable needed
5.10-bullseye-security released (5.10.216-1)
5.10-upstream-stable released (5.10.210) [a9bc32879a08f23cdb80a48c738017e39aea1080]
6.1-bookworm-security released (6.1.82-1)
6.1-upstream-stable released (6.1.77) [d54e4da98bbfa8c257bdca94c49652d81d18a4d8]
6.6-upstream-stable released (6.6.16) [350a6640fac4b53564ec20aa3f4a0922cb0ba5e6]
6.8-upstream-stable N/A "Fixed before branching point"
sid released (6.7.7-1)
upstream released (6.8-rc3) [8d975c15c0cd744000ca386247432d57b21f9df0]