APPLIED: [SRU][Trusty][PATCH 0/1] Fix for CVE-2017-18270
Khaled Elmously
khalid.elmously at canonical.com
Mon Jul 30 03:44:05 UTC 2018
..to trusty master-next
On 2018-07-24 16:15:14 , Kleber Souza wrote:
> https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-18270.html
>
> Backport needed for Trusty mainly to adjust for context.
>
> Tested with the reproducer from the commit message.
>
> Eric Biggers (1):
> KEYS: prevent creating a different user's keyrings
>
> include/linux/key.h | 2 ++
> security/keys/internal.h | 2 +-
> security/keys/key.c | 2 ++
> security/keys/keyring.c | 23 ++++++++++++++---------
> security/keys/process_keys.c | 8 ++++++--
> 5 files changed, 25 insertions(+), 12 deletions(-)
>
> --
> 2.17.1
>
>
> --
> kernel-team mailing list
> kernel-team at lists.ubuntu.com
> https://lists.ubuntu.com/mailman/listinfo/kernel-team
More information about the kernel-team
mailing list