[SRU][F/J][PATCH 0/1] CVE-2024-42156

Massimiliano Pellizzer massimiliano.pellizzer at canonical.com
Tue Oct 15 14:45:42 UTC 2024


[Impact]

s390/pkey: Wipe copies of clear-key structures on failure

Wipe all sensitive data from stack for all IOCTLs, which convert a
clear-key into a protected- or secure-key.

[Fix]

Noble:  Fixed
Jammy:  Backported from linux-6.9.y
Focal:  Applied Jammy patch
Bionic: Sent to ESM ML
Xenial: Not affected

[Test Case]

Compile tested only.

[Where problems could occur]

The fix affects the s390/pkey subsystem. An issue with this fix may lead
to cryptographic operations failing when using the s390 architecture.

Holger Dengler (1):
  s390/pkey: Wipe copies of clear-key structures on failure

 drivers/s390/crypto/pkey_api.c | 16 +++++++++-------
 1 file changed, 9 insertions(+), 7 deletions(-)

-- 
2.43.0




More information about the kernel-team mailing list