ACK: [CVE-2017-9150][X/Y/joule/aws/gke][PATCH 0/1] bpf: don't let ldimm64 leak map addresses on unprivileged
Shrirang Bagul
shrirang.bagul at canonical.com
Thu Jun 22 02:54:14 UTC 2017
On Wed, 2017-06-21 at 22:13 +0800, Wen-chien Jesse Sung wrote:
> CVE-2017-9150
>
> It's a backport instead of clean cherry-pick because "struct verifier_env"
> is renamed/extended to "struct bpf_verifier_env" in later versions.
>
> Daniel Borkmann (1):
> bpf: don't let ldimm64 leak map addresses on unprivileged
>
> kernel/bpf/verifier.c | 21 ++++++++++++++++-----
> 1 file changed, 16 insertions(+), 5 deletions(-)
Acked-by: Shrirang Bagul <shrirang.bagul at canonical.com>
More information about the kernel-team
mailing list