ACK: [SRU][J/L/M][PATCH 0/1] CVE-2023-5158
Stefan Bader
stefan.bader at canonical.com
Fri Oct 27 08:49:05 UTC 2023
On 26.10.23 21:54, Yuxuan Luo wrote:
> [Impact]
> A flaw was found in vringh_kiov_advance in drivers/vhost/vringh.c in the
> host side of a virtio ring in the Linux Kernel. This issue may result in
> a denial of service from guest to host via zero length descriptor.
>
> [Backport]
> It is a clean cherry pick.
>
> [Test]
> Compile and boot tested.
>
> [Potential Regression]
> Expect low regression potential that's limited to vhost users.
>
>
> Stefano Garzarella (1):
> vringh: don't use vringh_kiov_advance() in vringh_iov_xfer()
>
> drivers/vhost/vringh.c | 12 +++++++++++-
> 1 file changed, 11 insertions(+), 1 deletion(-)
>
Acked-by: Stefan Bader <stefan.bader at canonical.com>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_0xE8675DEECBEECEA3.asc
Type: application/pgp-keys
Size: 44613 bytes
Desc: OpenPGP public key
URL: <https://lists.ubuntu.com/archives/kernel-team/attachments/20231027/fc7a2e2e/attachment-0001.key>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <https://lists.ubuntu.com/archives/kernel-team/attachments/20231027/fc7a2e2e/attachment-0001.sig>
More information about the kernel-team
mailing list