ACK: [SRU OEM-5.17,OEM-6.0 0/1] CVE-2023-2235
Tim Gardner
tim.gardner at canonical.com
Fri Aug 4 13:12:01 UTC 2023
On 8/4/23 5:58 AM, Thadeu Lima de Souza Cascardo wrote:
> [Impact]
> It was discovered that the perf subsystem in the Linux kernel contained a
> use-after-free vulnerability. A privileged local attacker could possibly
> use this to cause a denial of service (system crash) or possibly execute
> arbitrary code.
>
> [Potential regression]
> Users of perf may notice regressions.
>
> Budimir Markovic (1):
> perf: Fix check before add_event_to_groups() in perf_group_detach()
>
> kernel/events/core.c | 2 +-
> 1 file changed, 1 insertion(+), 1 deletion(-)
>
Acked-by: Tim Gardner <tim.gardner at canonical.com>
--
-----------
Tim Gardner
Canonical, Inc
More information about the kernel-team
mailing list