ACK: [SRU][Mantic][PATCH 0/1] CVE-2023-50431
Magali Lemes
magali.lemes at canonical.com
Wed Feb 7 13:27:49 UTC 2024
On 06/02/2024 18:30, Bethany Jamison wrote:
> [Impact]
>
> sec_attest_info in drivers/accel/habanalabs/common/habanalabs_ioctl.c in
> the Linux kernel through 6.6.5 allows an information leak to user space
> because info->pad0 is not initialized.
>
> [Fix]
>
> Clean cherry-pick.
>
> [Test Case]
>
> Compile and boot tested.
>
> [Regression Potential]
>
> Issues could occur when setting hl_info_sec_attest struct.
>
Acked-by: Magali Lemes <magali.lemes at canonical.com>
> Xingyuan Mo (1):
> accel/habanalabs: fix information leak in sec_attest_info()
>
> drivers/accel/habanalabs/common/habanalabs_ioctl.c | 2 +-
> 1 file changed, 1 insertion(+), 1 deletion(-)
>
More information about the kernel-team
mailing list