Re: 425aa0e1d015 ("ip_sockglue: Fix missing-check bug in ip_ra_control()")

On Mon, Jun 03, 2019 at 04:02:40PM -0700, Zubin Mithra wrote:

Hello,

CVE-2019-12381 was fixed in the upstream linux kernel with the commit :-

• 425aa0e1d015 ("ip_sockglue: Fix missing-check bug in ip_ra_control()")

Could the patch be applied in order to v4.19.y, v4.14.y, v4.9.y and v4.4.y ?

Same comments here as on the ipv6 bug.

Should I just go create CVEs for every single stable kernel patches?

Actually, it's been often suggested that I should, just to drive the point home...

thanks,

greg k-h