ACK/Cmnt: [SRU Jammy,OEM-5.17 0/1] CVE-2023-21400
Stefan Bader
stefan.bader at canonical.com
Fri Aug 4 08:22:33 UTC 2023
On 03.08.23 23:37, Thadeu Lima de Souza Cascardo wrote:
> [Impact]
> Race condition on io_uring may lead to privilege escalation.
>
> [Backport]
> Fix was specific to 5.15 and 5.10. It was cleanly cherry picked on 5.15,
> but needed adjustment on 5.17 to match that code that moved from
> io_iopoll_completed to io_do_iopoll as the former was open coded in the
> latter.
>
> Later kernels are not affected as code has changed since 5.18.
>
> [Potential regression]
> io_uring users using IOPOLL.
>
> Jens Axboe (1):
> io_uring: ensure IOPOLL locks around deferred work
>
> io_uring/io_uring.c | 25 +++++++++++++++++++++----
> 1 file changed, 21 insertions(+), 4 deletions(-)
>
After resolving the cherry pick line.
Acked-by: Stefan Bader <stefan.bader at canonical.com>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_0xE8675DEECBEECEA3.asc
Type: application/pgp-keys
Size: 44613 bytes
Desc: OpenPGP public key
URL: <https://lists.ubuntu.com/archives/kernel-team/attachments/20230804/4f3678b5/attachment-0001.key>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_signature
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <https://lists.ubuntu.com/archives/kernel-team/attachments/20230804/4f3678b5/attachment-0001.sig>
More information about the kernel-team
mailing list