ACK: [SRU][Jammy-OEM-5.17/OEM-6.0][PATCH 0/1] CVE-2023-1075

Cengiz Can cengiz.can at canonical.com
Fri Jul 28 20:40:16 UTC 2023


On 23-07-28 15:53:11, Yuxuan Luo wrote:
> [Impact]
> It was discovered that the TLS subsystem in the Linux kernel contained a
> type confusion vulnerability in some situations. A local attacker could use
> this to cause a denial of service (system crash) or possibly expose
> sensitive information.
> 
> [Backport]
> The commit 587903142308 (“tls: create an internal header”) splitted the
> include/net/tls.h and moved the vulnerable `tls_is_tx_ready()`. Though not
> having this commit causes cherry-pick conflict, it is not necessary to backport
> this commit. Instead, it is possible to modify the `is_tx_ready()` directly.
> For OEM-6.0, it is a clean cherry pick.
> 
> [Test]
> Compile and boot tested.
> 
> [Potential Regression]
> Very low.
> 
> Pietro Borrello (1):
>   net/tls: tls_is_tx_ready() checked list_entry

Acked-by: Cengiz Can <cengiz.can at canonical.com>

> 
>  include/net/tls.h | 2 +-
>  1 file changed, 1 insertion(+), 1 deletion(-)
> 
> -- 
> 2.34.1
> 
> 
> -- 
> kernel-team mailing list
> kernel-team at lists.ubuntu.com
> https://lists.ubuntu.com/mailman/listinfo/kernel-team



More information about the kernel-team mailing list