ACK: [SRU][Mantic][Jammy][Focal][PATCH 0/1] CVE-2023-46838
Andrei Gherzan
andrei.gherzan at canonical.com
Thu Feb 15 13:13:04 UTC 2024
On 24/02/13 12:09PM, Bethany Jamison wrote:
> [Impact]
>
> Transmit requests in Xen's virtual network protocol can consist of multiple
> parts. While not really useful, except for the initial part any of them may
> be of zero length, i.e. carry no data at all. Besides a certain initial
> portion of the to be transferred data, these parts are directly translated
> into what Linux calls SKB fragments. Such converted request parts can, when
> for a particular SKB they are all of length zero, lead to a de-reference of
> NULL in core networking code.
>
> [Fix]
>
> Mantic: Clean cherry-pick.
> Jammy: Mantic patch applied cleanly.
> Focal: Mantic patch applied cleanly.
>
> [Test Case]
>
> Compile and boot tested.
>
> [Regression Potential]
>
> Issues could occur when sending data through Xen's networking especially
> when any of those segments are zeroed.
>
> Jan Beulich (1):
> xen-netback: don't produce zero-size SKB frags
>
> drivers/net/xen-netback/netback.c | 44 ++++++++++++++++++++++++++-----
> 1 file changed, 38 insertions(+), 6 deletions(-)
Acked-by: Andrei Gherzan <andrei.gherzan at canonical.com>
--
Andrei Gherzan
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: not available
URL: <https://lists.ubuntu.com/archives/kernel-team/attachments/20240215/e0682dba/attachment.sig>
More information about the kernel-team
mailing list