[SRU][Trusty][Zesty][PATCH 0/2] Fix for CVE-2017-16525

Kleber Souza kleber.souza at canonical.com
Fri Dec 8 17:46:23 UTC 2017


On 12/08/17 11:57, Po-Hsu Lin wrote:
> This patch set fixes CVE-2017-16525.
> Only Trusty and Zesty kernel need this fix.
> 
> Patch 1/2 is a clean cherry-pick for both T and Z.
> Patch 2/2 needs an extra patch (0e517c93) to become a clean cherry-pick, but
> the change in 0e517c93 will be replaced by this patch, so I just backport it.

The backport looks correct to me. For both patches:

Acked-by: Kleber Sacilotto de Souza <kleber.souza at canonical.com>

> 
> Johan Hovold (2):
>   USB: serial: console: fix use-after-free after failed setup
>   USB: serial: console: fix use-after-free on disconnect
> 
>  drivers/usb/serial/console.c | 4 ++--
>  1 file changed, 2 insertions(+), 2 deletions(-)
> 




More information about the kernel-team mailing list