APPLIED Re: [SRU OEM-5.17,OEM-6.0 0/1] CVE-2023-2235

Timo Aaltonen tjaalton at ubuntu.com
Fri Aug 11 09:32:33 UTC 2023


Thadeu Lima de Souza Cascardo kirjoitti 4.8.2023 klo 14.58:
> [Impact]
>   It was discovered that the perf subsystem in the Linux kernel contained a
>   use-after-free vulnerability. A privileged local attacker could possibly
>   use this to cause a denial of service (system crash) or possibly execute
>   arbitrary code.
> 
> [Potential regression]
> Users of perf may notice regressions.
> 
> Budimir Markovic (1):
>    perf: Fix check before add_event_to_groups() in perf_group_detach()
> 
>   kernel/events/core.c | 2 +-
>   1 file changed, 1 insertion(+), 1 deletion(-)
> 

applied to oem kernels, thanks

-- 
t




More information about the kernel-team mailing list