ACK: [SRU][Focal][PATCH 0/1] CVE-2023-3268

Cengiz Can cengiz.can at canonical.com
Tue Jul 11 19:20:25 UTC 2023


On Tue, 2023-07-11 at 10:16 -0400, Yuxuan Luo wrote:
> [Impact]
> An out of bounds (OOB) memory access flaw was found in the Linux
> kernel
> in relay_file_read_start_pos in kernel/relay.c in the relayfs. This
> flaw could allow a local attacker to crash the system or leak kernel
> internal information.
> 
> [Backport]
> Modify the erroneous line directly instead of cherry pick.
> 
> [Test]
> Only compile and boot tested so far, the test against proof of
> concept
> will come up later.
> 
> [Potential Regression]
> Expect minimal risk of regression.
> 
> Zhang Zhengming (1):
>   relayfs: fix out-of-bounds access in relay_file_read

Acked-by: Cengiz Can <cengiz.can at canonical.com>

> 
>  kernel/relay.c | 3 ++-
>  1 file changed, 2 insertions(+), 1 deletion(-)
> 
> -- 
> 2.34.1
> 
> 




More information about the kernel-team mailing list