From ad5a22306fe533496fa0378822cd3aafab4b796d Mon Sep 17 00:00:00 2001
From: Denis Efremov <efremov@linux.com>
Date: Thu, 15 Feb 2024 11:36:42 +0400
Subject: [PATCH] Add CVE-2023-4207

Signed-off-by: Denis Efremov <efremov@linux.com>
---
 cvehound/cve/CVE-2023-4207.cocci | 24 ++++++++++++++++++++++++
 1 file changed, 24 insertions(+)
 create mode 100644 cvehound/cve/CVE-2023-4207.cocci

diff --git a/cvehound/cve/CVE-2023-4207.cocci b/cvehound/cve/CVE-2023-4207.cocci
new file mode 100644
index 0000000..26a8f28
--- /dev/null
+++ b/cvehound/cve/CVE-2023-4207.cocci
@@ -0,0 +1,24 @@
+/// Files: net/sched/cls_fw.c
+/// Fix: 76e42ae831991c828cffa8c37736ebfb831ad5ec
+/// Fixes: e35a8ee5993ba81fd6c092f6827458c60406255b
+
+virtual detect
+
+@err@
+identifier fnew, f;
+position p;
+@@
+
+fw_change(...)
+{
+	...
+	fnew->id = f->id;
+*	fnew->res =@p f->res;
+	...
+}
+
+@script:python depends on detect@
+p << err.p;
+@@
+
+coccilib.report.print_report(p[0], 'ERROR: CVE-2023-4207')