APPLIED Re: [SRU OEM-5.17,OEM-6.0 0/1] CVE-2023-2235
Timo Aaltonen
tjaalton at ubuntu.com
Fri Aug 11 09:32:33 UTC 2023
Thadeu Lima de Souza Cascardo kirjoitti 4.8.2023 klo 14.58:
> [Impact]
> It was discovered that the perf subsystem in the Linux kernel contained a
> use-after-free vulnerability. A privileged local attacker could possibly
> use this to cause a denial of service (system crash) or possibly execute
> arbitrary code.
>
> [Potential regression]
> Users of perf may notice regressions.
>
> Budimir Markovic (1):
> perf: Fix check before add_event_to_groups() in perf_group_detach()
>
> kernel/events/core.c | 2 +-
> 1 file changed, 1 insertion(+), 1 deletion(-)
>
applied to oem kernels, thanks
--
t
More information about the kernel-team
mailing list