mbox series

[t,x,z,a,0/1] Fix for CVE-2018-5333

Message ID 20180131164759.19957-1-benjamin.romer@canonical.com
Headers show
Series Fix for CVE-2018-5333 | expand

Message

Benjamin M Romer Jan. 31, 2018, 4:47 p.m. UTC 
CVE-2018-5333:

In the Linux kernel through 4.14.13, the rds_cmsg_atomic function in 
net/rds/rdma.c mishandles cases where page pinning fails or an invalid 
address is supplied, leading to an rds_atomic_free_op NULL pointer 
dereference.

Mohamed Ghannam (1):
  RDS: null pointer dereference in rds_atomic_free_op

 net/rds/rdma.c | 1 +
 1 file changed, 1 insertion(+)

Comments

Po-Hsu Lin Feb. 1, 2018, 4:02 a.m. UTC | #1 
NAK for Zesty, as it's EOL.

ACK for other releases.
Acked-by: Po-Hsu Lin <po-hsu.lin@canonical.com>
Marcelo Henrique Cerri Feb. 1, 2018, 5:23 p.m. UTC | #2 
Excluding Zesty:

Acked-by: Marcelo Henrique Cerri <marcelo.cerri@canonical.com>
Benjamin M Romer Feb. 1, 2018, 8:08 p.m. UTC | #3 
Applied to t/x/a.

-- Ben

On Wed, 2018-01-31 at 11:47 -0500, Benjamin M Romer wrote:
> CVE-2018-5333:
> 
> In the Linux kernel through 4.14.13, the rds_cmsg_atomic function in 
> net/rds/rdma.c mishandles cases where page pinning fails or an
> invalid 
> address is supplied, leading to an rds_atomic_free_op NULL pointer 
> dereference.
> 
> Mohamed Ghannam (1):
>   RDS: null pointer dereference in rds_atomic_free_op
> 
>  net/rds/rdma.c | 1 +
>  1 file changed, 1 insertion(+)
>
Stefan Bader Feb. 2, 2018, 9:27 a.m. UTC | #4 
On 01.02.2018 21:08, benjamin.romer@canonical.com wrote:
> Applied to t/x/a.

when applying, please also add yourself as last sob (fixing up trusty now)

Thanks,
Stefan

> 
> -- Ben
> 
> On Wed, 2018-01-31 at 11:47 -0500, Benjamin M Romer wrote:
>> CVE-2018-5333:
>>
>> In the Linux kernel through 4.14.13, the rds_cmsg_atomic function in 
>> net/rds/rdma.c mishandles cases where page pinning fails or an
>> invalid 
>> address is supplied, leading to an rds_atomic_free_op NULL pointer 
>> dereference.
>>
>> Mohamed Ghannam (1):
>>   RDS: null pointer dereference in rds_atomic_free_op
>>
>>  net/rds/rdma.c | 1 +
>>  1 file changed, 1 insertion(+)
>>
> 
>
Kleber Sacilotto de Souza Feb. 2, 2018, 2:04 p.m. UTC | #5 
On 02/02/18 10:27, Stefan Bader wrote:
> On 01.02.2018 21:08, benjamin.romer@canonical.com wrote:
>> Applied to t/x/a.
> 
> when applying, please also add yourself as last sob (fixing up trusty now)

Fixed the SOB for xenial and artful, also moved the patch to
master-next-backlog branch.

Thanks,
Kleber

> 
> Thanks,
> Stefan
> 
>>
>> -- Ben
>>
>> On Wed, 2018-01-31 at 11:47 -0500, Benjamin M Romer wrote:
>>> CVE-2018-5333:
>>>
>>> In the Linux kernel through 4.14.13, the rds_cmsg_atomic function in 
>>> net/rds/rdma.c mishandles cases where page pinning fails or an
>>> invalid 
>>> address is supplied, leading to an rds_atomic_free_op NULL pointer 
>>> dereference.
>>>
>>> Mohamed Ghannam (1):
>>>   RDS: null pointer dereference in rds_atomic_free_op
>>>
>>>  net/rds/rdma.c | 1 +
>>>  1 file changed, 1 insertion(+)
>>>
>>
>>
> 
> 
> 
>