ACK/Cmnt: [SRU][Lunar 0/2, Jammy 0/1] CVE-2023-46862
Jacob Martin
jacob.martin at canonical.com
Mon Jan 22 19:34:12 UTC 2024
The backport note for the jammy patch should probably read:
(backported from commit ...)
The "manually" notation is not part of the typical format and seems to
already be indicated by your note underneath it.
Acked-by: Jacob Martin <jacob.martin at canonical.com>
On Mon, Jan 22, 2024 at 01:24:08PM -0500, Bethany Jamison wrote:
> [Impact]
>
> An issue was discovered in the Linux kernel through 6.5.9. During a
> race with SQ thread exit, an io_uring/fdinfo.c io_uring_show_fdinfo
> NULL pointer dereference can occur.
>
> [Fix]
>
> Lunar: Clean cherry-pick.
> Jammy: Manual backport of original fix commit. The structure of
> io_uring in Jammy is different from upstream, so I found where the
> chunk of code had been moved to in Jammy and directly applied the
> changes.
>
> [Test Case]
>
> Compile and boot test.
>
> [Regression Potential]
>
> Issues could occur during SQ thread exit races.
>
> Jens Axboe (2):
> io_uring/fdinfo: get rid of ref tryget
> io_uring/fdinfo: lock SQ thread while retrieving thread cpu/pid
>
> io_uring/fdinfo.c | 36 ++++++++++++++++++------------------
> 1 file changed, 18 insertions(+), 18 deletions(-)
>
> --
> 2.34.1
>
>
> --
> kernel-team mailing list
> kernel-team at lists.ubuntu.com
> https://lists.ubuntu.com/mailman/listinfo/kernel-team
More information about the kernel-team
mailing list