Potential Vulnerability in Cloned Code

Open tlnguyen-smu opened this issue 2 months ago • 0 comments

This PR fixes a potential security vulnerability in nfp_abm_u32_knode_replace() that was cloned from https://github.com/torvalds/linux/commit/78beef629fd95be4ed853b2d37b832f766bd96ca but did not receive the security patch.

Details:

Affected Function: nfp_abm_u32_knode_replace() in drivers/net/ethernet/netronome/nfp/abm/cls.c Original Fix: https://github.com/torvalds/linux/commit/78beef629fd95be4ed853b2d37b832f766bd96ca

What this PR does:

This PR applies the same security patch that was applied to the original repository to eliminate the potential vulnerability in the cloned code.

References:

https://github.com/torvalds/linux/commit/78beef629fd95be4ed853b2d37b832f766bd96ca
https://nvd.nist.gov/vuln/detail/cve-2019-19076

Please review and merge this PR to ensure your repository is protected against this potential vulnerability.

Dec 15 '25 06:12 tlnguyen-smu