[SRU Focal,Jammy,OEM-6.1,Lunar,Mantic 0/1] CVE-2023-5717
Thadeu Lima de Souza Cascardo
cascardo at canonical.com
Wed Oct 25 20:56:07 UTC 2023
[Impact]
Users with access to perf (CAP_PERFMON) or unprivileged users on systems
where sysctl kernel.perf_event_paranoid is less than 1 may escalate
privileges.
[Backport]
All clean cherry-picks, but could not apply cleanly (except with --3way),
hence the multiple submissions.
[Potential regressions]
performance monitoring (perf command) may break.
Peter Zijlstra (1):
perf: Disallow mis-matched inherited group reads
include/linux/perf_event.h | 1 +
kernel/events/core.c | 39 ++++++++++++++++++++++++++++++++------
2 files changed, 34 insertions(+), 6 deletions(-)
--
2.34.1
More information about the kernel-team
mailing list