APPLIED[J]/Cmnt: [SRU Jammy,OEM-5.17 0/1] CVE-2023-21400
Stefan Bader
stefan.bader at canonical.com
Fri Aug 4 09:12:17 UTC 2023
On 03.08.23 23:37, Thadeu Lima de Souza Cascardo wrote:
> [Impact]
> Race condition on io_uring may lead to privilege escalation.
>
> [Backport]
> Fix was specific to 5.15 and 5.10. It was cleanly cherry picked on 5.15,
> but needed adjustment on 5.17 to match that code that moved from
> io_iopoll_completed to io_do_iopoll as the former was open coded in the
> latter.
>
> Later kernels are not affected as code has changed since 5.18.
>
> [Potential regression]
> io_uring users using IOPOLL.
>
> Jens Axboe (1):
> io_uring: ensure IOPOLL locks around deferred work
>
> io_uring/io_uring.c | 25 +++++++++++++++++++++----
> 1 file changed, 21 insertions(+), 4 deletions(-)
>
Applied to jammy:linux/master-next adjusting reference to point to
linux-5.15.y. Thanks.
-Stefan
-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_0xE8675DEECBEECEA3.asc
Type: application/pgp-keys
Size: 44613 bytes
Desc: OpenPGP public key
URL: <https://lists.ubuntu.com/archives/kernel-team/attachments/20230804/f94230d4/attachment-0001.key>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_signature
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <https://lists.ubuntu.com/archives/kernel-team/attachments/20230804/f94230d4/attachment-0001.sig>
More information about the kernel-team
mailing list