ACK: [SRU Focal,Groovy,Hirsute,Focal/linux-oem-5.10 0/3] CVE-2021-33200
Tim Gardner
tim.gardner at canonical.com
Thu May 27 22:48:36 UTC 2021
Acked-by: Tim Gardner <tim.gardner at canonical.com>
All clean cherry-picks. Seems like there have been a bunch of BPF
vulnerabilities of late.
On 5/27/21 3:36 PM, Thadeu Lima de Souza Cascardo wrote:
> [Impact]
> The vulnerability allows OOB reads and writes. Code execution cannot be ruled out.
>
> [Potential regression]
> Some BPF code may be denied to load.
>
> [Test]
> I tested a reproducer that may cause a kaslr leak, and it was stopped
> after the fixes were applied.
>
> Daniel Borkmann (3):
> bpf: Wrap aux data inside bpf_sanitize_info container
> bpf: Fix mask direction swap upon off reg sign change
> bpf: No need to simulate speculative domain for immediates
>
> kernel/bpf/verifier.c | 46 ++++++++++++++++++++++++++-----------------
> 1 file changed, 28 insertions(+), 18 deletions(-)
>
--
-----------
Tim Gardner
Canonical, Inc
More information about the kernel-team
mailing list