APPLIED: [SRU][Focal][PATCH v2 0/2] CVE-2023-3268
Stefan Bader
stefan.bader at canonical.com
Mon Jul 31 15:42:09 UTC 2023
On 12.07.23 00:22, Yuxuan Luo wrote:
> [Impact]
> An out of bounds (OOB) memory access flaw was found in the Linux kernel
> in relay_file_read_start_pos in kernel/relay.c in the relayfs. This
> flaw could allow a local attacker to crash the system or leak kernel
> internal information.
>
> [Backport]
> There are clean cherry picks.
>
> [Test]
> Only compile and boot tested so far, the test against proof of concept
> will come up later.
>
> [Potential Regression]
> Expect low risk of regression.
>
> Pengcheng Yang (1):
> kernel/relay.c: fix read_pos error when multiple readers
>
> Zhang Zhengming (1):
> relayfs: fix out-of-bounds access in relay_file_read
>
> kernel/relay.c | 18 ++++++++----------
> 1 file changed, 8 insertions(+), 10 deletions(-)
>
Applied to focal:linux/master-next. Thanks.
-Stefan
-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_0xE8675DEECBEECEA3.asc
Type: application/pgp-keys
Size: 44613 bytes
Desc: OpenPGP public key
URL: <https://lists.ubuntu.com/archives/kernel-team/attachments/20230731/9c090fe6/attachment-0001.key>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_signature
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <https://lists.ubuntu.com/archives/kernel-team/attachments/20230731/9c090fe6/attachment-0001.sig>
More information about the kernel-team
mailing list