ACK: [SRU][Jammy-OEM-5.17/OEM-6.0][PATCH 0/1] CVE-2023-0458

Tim Gardner tim.gardner at canonical.com
Mon Jul 31 16:03:29 UTC 2023


On 7/31/23 8:50 AM, Yuxuan Luo wrote:
> [Impact]
> kernel/sys.c contains a spectre-v1 vuneralbility due to lack of spec barrier,
> resulting in kernel memory info leak.
> 
> [Backport]
> Clean cherry pick.
> 
> [Test]
> Compile and boot tested.
> 
> [Potential Regression]
> Since the new added line merely truncate the variable to the given range after
> the value check, it only functions as a spec barrier; therefore, expecting low
> regression potential.
> 
> Greg Kroah-Hartman (1):
>    prlimit: do_prlimit needs to have a speculation check
> 
>   kernel/sys.c | 2 ++
>   1 file changed, 2 insertions(+)
> 
Acked-by: Tim Gardner <tim.gardner at canonical.com>
-- 
-----------
Tim Gardner
Canonical, Inc




More information about the kernel-team mailing list