[SRU X/B/F/G] CVE-2020-27777 Restrict RTAS requests from userspace
Stefan Bader
stefan.bader at canonical.com
Wed Dec 2 08:16:38 UTC 2020
On 01.12.20 21:50, Thadeu Lima de Souza Cascardo wrote:
> rtas syscall allow userspace to request any RTAS call (firmware services). This
> should not be unrestricted under lockdown, so filter all requests in any case,
> to allow only those legitimate requests that might be used by real tools.
>
Can you explain to someone that does not have the whole history in his head why
Bionic and Focal only have config changes while Xenial and Groovy need a code
change?
-Stefan
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <https://lists.ubuntu.com/archives/kernel-team/attachments/20201202/9c1652ef/attachment.sig>
More information about the kernel-team
mailing list