GET

Cover Letter Detail

Show a cover letter.

GET /api/covers/2216192/?format=api
HTTP 200 OK
Allow: GET, HEAD, OPTIONS
Content-Type: application/json
Vary: Accept

{
    "id": 2216192,
    "url": "http://patchwork.ozlabs.org/api/covers/2216192/?format=api",
    "web_url": "http://patchwork.ozlabs.org/project/ubuntu-kernel/cover/20260326005129.535152-1-tim.whisonant@canonical.com/",
    "project": {
        "id": 15,
        "url": "http://patchwork.ozlabs.org/api/projects/15/?format=api",
        "name": "Ubuntu Kernel",
        "link_name": "ubuntu-kernel",
        "list_id": "kernel-team.lists.ubuntu.com",
        "list_email": "kernel-team@lists.ubuntu.com",
        "web_url": null,
        "scm_url": null,
        "webscm_url": null,
        "list_archive_url": "",
        "list_archive_url_format": "",
        "commit_url_format": ""
    },
    "msgid": "<20260326005129.535152-1-tim.whisonant@canonical.com>",
    "list_archive_url": null,
    "date": "2026-03-26T00:51:24",
    "name": "[SRU,J/N/Q,0/1] CVE-2026-23274",
    "submitter": {
        "id": 89903,
        "url": "http://patchwork.ozlabs.org/api/people/89903/?format=api",
        "name": "Tim Whisonant",
        "email": "tim.whisonant@canonical.com"
    },
    "mbox": "http://patchwork.ozlabs.org/project/ubuntu-kernel/cover/20260326005129.535152-1-tim.whisonant@canonical.com/mbox/",
    "series": [
        {
            "id": 497523,
            "url": "http://patchwork.ozlabs.org/api/series/497523/?format=api",
            "web_url": "http://patchwork.ozlabs.org/project/ubuntu-kernel/list/?series=497523",
            "date": "2026-03-26T00:51:24",
            "name": "CVE-2026-23274",
            "version": 1,
            "mbox": "http://patchwork.ozlabs.org/series/497523/mbox/"
        }
    ],
    "comments": "http://patchwork.ozlabs.org/api/covers/2216192/comments/",
    "headers": {
        "Return-Path": "<kernel-team-bounces@lists.ubuntu.com>",
        "X-Original-To": "incoming@patchwork.ozlabs.org",
        "Delivered-To": "patchwork-incoming@legolas.ozlabs.org",
        "Authentication-Results": [
            "legolas.ozlabs.org;\n\tdkim=fail reason=\"signature verification failed\" (4096-bit key;\n unprotected) header.d=canonical.com header.i=@canonical.com\n header.a=rsa-sha256 header.s=20251003 header.b=A9+d3a6z;\n\tdkim-atps=neutral",
            "legolas.ozlabs.org;\n spf=pass (sender SPF authorized) smtp.mailfrom=lists.ubuntu.com\n (client-ip=185.125.189.65; helo=lists.ubuntu.com;\n envelope-from=kernel-team-bounces@lists.ubuntu.com;\n receiver=patchwork.ozlabs.org)"
        ],
        "Received": [
            "from lists.ubuntu.com (lists.ubuntu.com [185.125.189.65])\n\t(using TLSv1.2 with cipher ECDHE-ECDSA-AES256-GCM-SHA384 (256/256 bits))\n\t(No client certificate requested)\n\tby legolas.ozlabs.org (Postfix) with ESMTPS id 4fh4wl5rlRz1yGJ\n\tfor <incoming@patchwork.ozlabs.org>; Thu, 26 Mar 2026 11:51:51 +1100 (AEDT)",
            "from localhost ([127.0.0.1] helo=lists.ubuntu.com)\n\tby lists.ubuntu.com with esmtp (Exim 4.86_2)\n\t(envelope-from <kernel-team-bounces@lists.ubuntu.com>)\n\tid 1w5Ywl-0000fg-3T; Thu, 26 Mar 2026 00:51:39 +0000",
            "from smtp-relay-internal-1.internal ([10.131.114.114]\n helo=smtp-relay-internal-1.canonical.com)\n by lists.ubuntu.com with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128)\n (Exim 4.86_2) (envelope-from <tim.whisonant@canonical.com>)\n id 1w5Ywk-0000fZ-4D\n for kernel-team@lists.ubuntu.com; Thu, 26 Mar 2026 00:51:38 +0000",
            "from mail-yw1-f199.google.com (mail-yw1-f199.google.com\n [209.85.128.199])\n (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)\n key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest\n SHA256)\n (No client certificate requested)\n by smtp-relay-internal-1.canonical.com (Postfix) with ESMTPS id F304F3F1F0\n for <kernel-team@lists.ubuntu.com>; Thu, 26 Mar 2026 00:51:37 +0000 (UTC)",
            "by mail-yw1-f199.google.com with SMTP id\n 00721157ae682-7962a21167dso10707567b3.3\n for <kernel-team@lists.ubuntu.com>; Wed, 25 Mar 2026 17:51:37 -0700 (PDT)",
            "from localhost (104-6-108-11.lightspeed.frokca.sbcglobal.net.\n [104.6.108.11]) by smtp.gmail.com with ESMTPSA id\n 00721157ae682-79b17e1d455sm6322437b3.12.2026.03.25.17.51.35\n for <kernel-team@lists.ubuntu.com>\n (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);\n Wed, 25 Mar 2026 17:51:35 -0700 (PDT)"
        ],
        "DKIM-Signature": "v=1; a=rsa-sha256; c=relaxed/relaxed; d=canonical.com;\n s=20251003; t=1774486298;\n bh=dbAQzNSJnQIO4iYmnoVVqvU6My7B0Gj19sLLTfi+Iiw=;\n h=From:To:Subject:Date:Message-ID:MIME-Version;\n b=A9+d3a6zYPlNxd4vSx9SRSNZsNU+fG5yT8f7fdepRe41u4sUnHCoyI7V7P1isUDiZ\n ynk4OmAHsUvWS45GeUtEcVoWRngt5U2d+DogH8Nrd7cK0bTlm0cAVoDJ5Xhy/Eoc30\n aD9CdL600nYe4790y8Cu/1CFfs3UZueSRKOc3eWidSqxE5Ca3Gu4JoIipNWlosG6lH\n YzlKjMX0/+eDSqf6l1pwuHVwQZML3OuFk8hWhm3HJQ++oHR36KOfwdpINUMWfdUMS4\n c/+P9mbJ5llkCGDwYmwl9OvG38bIV2W/1srLK6pZqQpqo8qE9L1LpiT/wCmtC/dHL7\n h0NeMxq0JvRc+/znV8MOZ6JktmmUWUl7MU1CtwShH0u1FK8M2N22BiCjw0/wG3lE9o\n 1jEZ3boYsW2OSofMB2/6mJioBZlaD2r/n6eaO1VR3MPxe5sl0fhBKnAhVGntq1UwFJ\n gypfMeSiy0G6U9lyo0jslrdPLkv90zAQDU1yG7+voNarA+lKZ9QSse8tUs/RqlPG6U\n 3GxHdSmAW2oqraO49AVtyHRzrE4V4RnOEwTvDI2p33P/ycERE+K3iQveeox61b0voN\n cx6vIz/aHu1sZxnrifmD2IMGIK6nFcLRlv/hrDePXmM5cfugkJ1gHbIX+4ApaSbgte\n Ulu1y0iDpeg0vxB6vf1SVDbQ=",
        "X-Google-DKIM-Signature": "v=1; a=rsa-sha256; c=relaxed/relaxed;\n d=1e100.net; s=20251104; t=1774486296; x=1775091096;\n h=content-transfer-encoding:mime-version:message-id:date:subject:to\n :from:x-gm-gg:x-gm-message-state:from:to:cc:subject:date:message-id\n :reply-to;\n bh=dbAQzNSJnQIO4iYmnoVVqvU6My7B0Gj19sLLTfi+Iiw=;\n b=kxQ6POLsT5njMiUGGxqu/pyV40ADKXPAoL/oQK9tTFI9hPiI8lEihfi6Pif3HbpvcZ\n 5+meFGOCtOjakFOBEY9XVv3Txjh3HRY4mAjcDtu5j4UsB2X/KBKIckfs4Bmw0Yx2nMfP\n zkezoAgj99tp5Fjh/Kl9VOIT+vVhwkwF2+FkkjK6pe6UFid0SYBjzARqATBnw9dIcfkx\n PSdO0ribIeOiSaNk/bYvPvac5hSjYP3ZN5+EBDT84h8F42R+k1mbbpSzycfHvSaiIrUA\n rsNz3P+mCP7cgNNVfKL89S5iq8fRqh70SlN0FbCenIVx24z0rs7Ba/bYcnpfvd8tRsZ5\n dV/Q==",
        "X-Gm-Message-State": "AOJu0YzWbXrWBHk5lRXsapUPFWZX4y+IUT1fmmpZRr/1uy3YWjp7AMef\n ZmpdJ6xD0sPKBCy21uNoKBlgsL9tNnKYY0sNk4YIMzDSpbtvPmIWuvRJ2mCCP7Thn13CqBa9zhX\n iuzgmb6f2tFhRz3Tt+7cw2JnYfJKmho8XHWk2Qi3iQ1ArLq8QS6BxhlWXxXrZAkFi4qSFn7FFOv\n jqKHnnxJEyqe/0Eg==",
        "X-Gm-Gg": "ATEYQzwT5dKYYFsYhjRS84PtIMmGABwc3I/8/yh5YF9mMyELQi6TlPgHxsJicW274A0\n NMUnYHzsWtS6h00c2ssm87FmLM+b61w6lnNcndo8q/dG1BqfaBk1T8ktnbb43pPmQXLm0JKn765\n ped36KDm/nAkEvtkuUr3s9keaztc9/xuqFPUf4Shme+PyuyS3jLJLX8rdlw5SoSsZBZK3qYyuRQ\n 26ZgOFtIhOqH69B251zEYJD4GxpSu8Qk7t101gaNknEnL0bqn0MbRKqMgEwsVxD4/T8xPqq1Czv\n Rsxo059n3mPFbgZ2XCnNpPQXD5oW0P0m50U+4aq1Db6WOqce+q3xk6INRsQkCKmMc6iBjXeCE4s\n llRCaDaaJPon9pAhlViffv0APr/Nf+iUNNyi4EYltK3ie9cKoWrqKk7nPQljcH9Wo7DcippRE90\n 2ddw==",
        "X-Received": [
            "by 2002:a05:690c:17:b0:79a:3838:4530 with SMTP id\n 00721157ae682-79acf334f14mr60951037b3.3.1774486296519;\n Wed, 25 Mar 2026 17:51:36 -0700 (PDT)",
            "by 2002:a05:690c:17:b0:79a:3838:4530 with SMTP id\n 00721157ae682-79acf334f14mr60950907b3.3.1774486296049;\n Wed, 25 Mar 2026 17:51:36 -0700 (PDT)"
        ],
        "From": "Tim Whisonant <tim.whisonant@canonical.com>",
        "To": "kernel-team@lists.ubuntu.com",
        "Subject": "[SRU][J/N/Q][PATCH 0/1] CVE-2026-23274",
        "Date": "Wed, 25 Mar 2026 17:51:24 -0700",
        "Message-ID": "<20260326005129.535152-1-tim.whisonant@canonical.com>",
        "X-Mailer": "git-send-email 2.43.0",
        "MIME-Version": "1.0",
        "X-BeenThere": "kernel-team@lists.ubuntu.com",
        "X-Mailman-Version": "2.1.20",
        "Precedence": "list",
        "List-Id": "Kernel team discussions <kernel-team.lists.ubuntu.com>",
        "List-Unsubscribe": "<https://lists.ubuntu.com/mailman/options/kernel-team>,\n <mailto:kernel-team-request@lists.ubuntu.com?subject=unsubscribe>",
        "List-Archive": "<https://lists.ubuntu.com/archives/kernel-team>",
        "List-Post": "<mailto:kernel-team@lists.ubuntu.com>",
        "List-Help": "<mailto:kernel-team-request@lists.ubuntu.com?subject=help>",
        "List-Subscribe": "<https://lists.ubuntu.com/mailman/listinfo/kernel-team>,\n <mailto:kernel-team-request@lists.ubuntu.com?subject=subscribe>",
        "Content-Type": "text/plain; charset=\"utf-8\"",
        "Content-Transfer-Encoding": "base64",
        "Errors-To": "kernel-team-bounces@lists.ubuntu.com",
        "Sender": "\"kernel-team\" <kernel-team-bounces@lists.ubuntu.com>"
    },
    "content": "SRU Justification:\n\n[Impact]\n\nnetfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels\n\nIDLETIMER revision 0 rules reuse existing timers by label and always call\nmod_timer() on timer->timer.\n\nIf the label was created first by revision 1 with XT_IDLETIMER_ALARM,\nthe object uses alarm timer semantics and timer->timer is never initialized.\nReusing that object from revision 0 causes mod_timer() on an uninitialized\ntimer_list, triggering debugobjects warnings and possible panic when\npanic_on_warn=1.\n\nFix this by rejecting revision 0 rule insertion when an existing timer with\nthe same label is of ALARM type.\n\n[Fix]\n\nQuesting: cherry picked from upstream\nNoble:    applied Jammy patch\nJammy:    cherry picked from upstream\nFocal:    not affected\nBionic:   not affected\nXenial:   not affected\nTrusty:   not affected\n\n[Test Plan]\n\nCompile and boot tested.\n\n[Where problems could occur]\n\nThe change affects the Netfilter module for manipulating\ntimers on packet match, fixing a potential kernel panic\nwhen panic_on_warn is set. Any issues would affect clients\nof the type of timers created with XT_IDLETIMER_ALARM.\n\nYuan Tan (1):\n  netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels\n\n net/netfilter/xt_IDLETIMER.c | 6 ++++++\n 1 file changed, 6 insertions(+)"
}