[SRU][OEM-5.17][PATCH 0/1] CVE-2022-3635
Thadeu Lima de Souza Cascardo
cascardo at canonical.com
Fri Jun 2 16:58:35 UTC 2023
On Fri, Jun 02, 2023 at 04:53:22PM +0200, Thibault Ferrante wrote:
> CVE-2022-3635
>
> [Impact]
> A use after free was found in the Linux Kernel. Affected by this issue is the
> function tst_timer of the file drivers/atm/idt77252.c of the component IPsec.
The MITRE description is not always good. This one was likely reported by
vuldb, there was no serious analysis before submitting. Possibly done by a
machine (let's welcome our algorithm overlords).
>
> [Fix]
> Cherry picked from upstream.
>
> [Test case]
> Compile, self-test passed and boot tested.
What do you mean by self-test here? I don't believe there was any specific
tests for this driver.
>
> [Potential regression]
> Low. Only free a timer after use.
> Already integrated in other kernels.
So, we got used to using this section to say "hey, there is no problem here,
nothing can go wrong". Then, we got told this is not what we are supposed to
do. At least I tried to give a notion of what could go wrong. In the case of a
driver, I would just say: "only users of ATM IDT 77252 driver can be affected
by this change".
The notion here is that if we see a bug report, we could go back to some of our
bugs and say, "hey, this fix could affect this entire subsystem, so perhaps
this is the culprit".
Cascardo.
>
> Duoming Zhou (1):
> atm: idt77252: fix use-after-free bugs caused by tst_timer
>
> drivers/atm/idt77252.c | 1 +
> 1 file changed, 1 insertion(+)
>
> --
> 2.39.2
>
>
> --
> kernel-team mailing list
> kernel-team at lists.ubuntu.com
> https://lists.ubuntu.com/mailman/listinfo/kernel-team
More information about the kernel-team
mailing list