From patchwork Tue Nov 21 21:04:15 2023 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Bethany Jamison X-Patchwork-Id: 1867039 Return-Path: X-Original-To: incoming@patchwork.ozlabs.org Delivered-To: patchwork-incoming@legolas.ozlabs.org Authentication-Results: legolas.ozlabs.org; spf=pass (sender SPF authorized) smtp.mailfrom=lists.ubuntu.com (client-ip=185.125.189.65; helo=lists.ubuntu.com; envelope-from=kernel-team-bounces@lists.ubuntu.com; receiver=patchwork.ozlabs.org) Received: from lists.ubuntu.com (lists.ubuntu.com [185.125.189.65]) (using TLSv1.2 with cipher ECDHE-ECDSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by legolas.ozlabs.org (Postfix) with ESMTPS id 4SZcMR6T55z1ySX for ; Wed, 22 Nov 2023 08:04:51 +1100 (AEDT) Received: from localhost ([127.0.0.1] helo=lists.ubuntu.com) by lists.ubuntu.com with esmtp (Exim 4.86_2) (envelope-from ) id 1r5Xv6-0005Iv-35; Tue, 21 Nov 2023 21:04:32 +0000 Received: from smtp-relay-internal-1.internal ([10.131.114.114] helo=smtp-relay-internal-1.canonical.com) by lists.ubuntu.com with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.86_2) (envelope-from ) id 1r5Xuu-0005IG-8V for kernel-team@lists.ubuntu.com; Tue, 21 Nov 2023 21:04:21 +0000 Received: from mail-qv1-f71.google.com (mail-qv1-f71.google.com [209.85.219.71]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by smtp-relay-internal-1.canonical.com (Postfix) with ESMTPS id 1703A3F68B for ; Tue, 21 Nov 2023 21:04:20 +0000 (UTC) Received: by mail-qv1-f71.google.com with SMTP id 6a1803df08f44-67389986b6dso37653266d6.3 for ; Tue, 21 Nov 2023 13:04:20 -0800 (PST) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1700600658; x=1701205458; h=content-transfer-encoding:mime-version:message-id:date:subject:to :from:x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=zZ4YrqRqB8tCifBHjlMIu6Rr+X9v5E1trce2lmhT0tw=; b=LMlcDmUBRmIeCtWUU+6JAVArjrcHDO6xqLjEllXED9Wxz4kAYP9+taCVDtaE8eQZrO AG4UyefEbna79YAFV0+o7wHMG9IAyUXHnUiBhl5tah7B7t4K72pYArTcMljD1j2CdGdw rJwmPLNFCjMnP7kI0ZFeBc6ujF3b47wuooWCZU1iFTQLn8wu8K8PSQJDhiqowD1fo2bJ tSa3jH1Wgwsx/uN1PnQhCky1tcb3kEv6deAXURgej6jlURl5yb3mSSlVJxNh5x5hPhaU EgpRAU2lvDBciJIOacp5hZPDBOiFSSq9GLTzVUbIbVYQ2c4gCnN1Ac1dgZI0wP7irAOG FYCA== X-Gm-Message-State: AOJu0YyRlFJporL7NF6z0IvF990582G5uuFID9uZnKgImBVL731PYvdn bWzjCtUEzqXeMUKow3O4mHRbKICRfy6Zo07d+IGioxUMAjiMJBnV+zf7A9VZbqW+c/jQFoWft7g 1acgPahcAR2jo9Dw6oQj5sbBdfwvrDUM4GH8X1KWBmylssHSAcA== X-Received: by 2002:a0c:f591:0:b0:658:1eec:408a with SMTP id k17-20020a0cf591000000b006581eec408amr224781qvm.40.1700600658079; Tue, 21 Nov 2023 13:04:18 -0800 (PST) X-Google-Smtp-Source: AGHT+IFFTxWwKdXGm1yJenW63jNpcBLV2NZh5KMj+8SVwUMtd7zsEPKtY/sXfQgJM8ob7yeI2Fi/NQ== X-Received: by 2002:a0c:f591:0:b0:658:1eec:408a with SMTP id k17-20020a0cf591000000b006581eec408amr224761qvm.40.1700600657801; Tue, 21 Nov 2023 13:04:17 -0800 (PST) Received: from smtp.gmail.com (104-218-69-32.dynamic.lnk.ne.allofiber.net. [104.218.69.32]) by smtp.gmail.com with ESMTPSA id r14-20020a0562140c4e00b00679f5aee64bsm92275qvj.122.2023.11.21.13.04.17 for (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Tue, 21 Nov 2023 13:04:17 -0800 (PST) From: Bethany Jamison To: kernel-team@lists.ubuntu.com Subject: [SRU][Mantic][Lunar][Jammy][PATCH v3 0/1] CVE-2023-6176 Date: Tue, 21 Nov 2023 15:04:15 -0600 Message-Id: <20231121210416.50033-1-bethany.jamison@canonical.com> X-Mailer: git-send-email 2.34.1 MIME-Version: 1.0 X-BeenThere: kernel-team@lists.ubuntu.com X-Mailman-Version: 2.1.20 Precedence: list List-Id: Kernel team discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: kernel-team-bounces@lists.ubuntu.com Sender: "kernel-team" [Impact] A null pointer dereference flaw was found in the Linux kernel API for the cryptographic algorithm scatterwalk functionality. This issue occurs when a user constructs a malicious packet with specific socket configuration, which could allow a local user to crash the system or escalate their privileges on the system. [Fix] Clean cherry-pick. [Test Case] Compile and boot test. [Where problems could occur] Issues could occur in tls. v2: added Jammy and Lunar tags to patch 1/1 v3: added provenance line Liu Jian (1): net/tls: do not free tls_rec on async operation in bpf_exec_tx_verdict() net/tls/tls_sw.c | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) Acked-by: Jacob Martin Acked-by: Manuel Diewald