[SRU,Trusty,0/1] Fix for CVE-2017-11473

Message ID	20180710172825.20738-1-kleber.souza@canonical.com
Headers	show Return-Path: <kernel-team-bounces@lists.ubuntu.com> From: Kleber Sacilotto de Souza <kleber.souza@canonical.com> To: kernel-team@lists.ubuntu.com Subject: [SRU][Trusty][PATCH 0/1] Fix for CVE-2017-11473 Date: Tue, 10 Jul 2018 19:28:24 +0200 Message-Id: <20180710172825.20738-1-kleber.souza@canonical.com> Precedence: list MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 Errors-To: kernel-team-bounces@lists.ubuntu.com Sender: "kernel-team" <kernel-team-bounces@lists.ubuntu.com>
Series	Fix for CVE-2017-11473 \| expand [SRU,Trusty,0/1] Fix for CVE-2017-11473 [SRU,Trusty,1/1] x86/acpi: Prevent out of bound access caused by broken ACPI tables

Message ID

20180710172825.20738-1-kleber.souza@canonical.com

Headers

From: Kleber Sacilotto de Souza <kleber.souza@canonical.com>
To: kernel-team@lists.ubuntu.com
Subject: [SRU][Trusty][PATCH 0/1] Fix for CVE-2017-11473
Date: Tue, 10 Jul 2018 19:28:24 +0200
Message-Id: <20180710172825.20738-1-kleber.souza@canonical.com>
Precedence: list
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
Errors-To: kernel-team-bounces@lists.ubuntu.com
Sender: "kernel-team" <kernel-team-bounces@lists.ubuntu.com>

Series

Fix for CVE-2017-11473 | expand

Message

Kleber Sacilotto de Souza July 10, 2018, 5:28 p.m. UTC

https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-11473.html

  Buffer overflow in the mp_override_legacy_irq() function in
  arch/x86/kernel/acpi/boot.c in the Linux kernel through 4.12.2 allows local
  users to gain privileges via a crafted ACPI table.

Clean cherry-pick of the upstream commit.

Seunghun Han (1):
  x86/acpi: Prevent out of bound access caused by broken ACPI tables

 arch/x86/kernel/acpi/boot.c | 8 ++++++++
 1 file changed, 8 insertions(+)