ACK: [SRU][Jammy-OEM-5.17/OEM-6.0][PATCH 0/1] CVE-2023-0458
Tim Gardner
tim.gardner at canonical.com
Mon Jul 31 16:03:29 UTC 2023
On 7/31/23 8:50 AM, Yuxuan Luo wrote:
> [Impact]
> kernel/sys.c contains a spectre-v1 vuneralbility due to lack of spec barrier,
> resulting in kernel memory info leak.
>
> [Backport]
> Clean cherry pick.
>
> [Test]
> Compile and boot tested.
>
> [Potential Regression]
> Since the new added line merely truncate the variable to the given range after
> the value check, it only functions as a spec barrier; therefore, expecting low
> regression potential.
>
> Greg Kroah-Hartman (1):
> prlimit: do_prlimit needs to have a speculation check
>
> kernel/sys.c | 2 ++
> 1 file changed, 2 insertions(+)
>
Acked-by: Tim Gardner <tim.gardner at canonical.com>
--
-----------
Tim Gardner
Canonical, Inc
More information about the kernel-team
mailing list