| Message ID | 20230602145323.697951-1-thibault.ferrante@canonical.com |
|---|---|
| Headers | show |
| Series | CVE-2022-3635 | expand |
On Fri, Jun 02, 2023 at 04:53:22PM +0200, Thibault Ferrante wrote: > CVE-2022-3635 > > [Impact] > A use after free was found in the Linux Kernel. Affected by this issue is the > function tst_timer of the file drivers/atm/idt77252.c of the component IPsec. The MITRE description is not always good. This one was likely reported by vuldb, there was no serious analysis before submitting. Possibly done by a machine (let's welcome our algorithm overlords). > > [Fix] > Cherry picked from upstream. > > [Test case] > Compile, self-test passed and boot tested. What do you mean by self-test here? I don't believe there was any specific tests for this driver. > > [Potential regression] > Low. Only free a timer after use. > Already integrated in other kernels. So, we got used to using this section to say "hey, there is no problem here, nothing can go wrong". Then, we got told this is not what we are supposed to do. At least I tried to give a notion of what could go wrong. In the case of a driver, I would just say: "only users of ATM IDT 77252 driver can be affected by this change". The notion here is that if we see a bug report, we could go back to some of our bugs and say, "hey, this fix could affect this entire subsystem, so perhaps this is the culprit". Cascardo. > > Duoming Zhou (1): > atm: idt77252: fix use-after-free bugs caused by tst_timer > > drivers/atm/idt77252.c | 1 + > 1 file changed, 1 insertion(+) > > -- > 2.39.2 > > > -- > kernel-team mailing list > kernel-team@lists.ubuntu.com > https://lists.ubuntu.com/mailman/listinfo/kernel-team