NACK/Cmnt: [SRU][N][PATCH 0/1] CVE-2024-35984
Stefan Bader
stefan.bader at canonical.com
Thu Jul 4 17:26:06 UTC 2024
On 25.06.24 22:57, Bethany Jamison wrote:
> [Impact]
>
> i2c: smbus: fix NULL function pointer dereference
>
> Baruch reported an OOPS when using the designware controller as target
> only. Target-only modes break the assumption of one transfer function
> always being available. Fix this by always checking the pointer in
> __i2c_transfer.
>
> [Fix]
>
> Noble: Clean cherry-pick from linux-6.8.y
> Jammy: pending
> Focal: pending
> Bionic: fix sent to esm ML
> Xenial: fix sent to esm ML
> Trusty: not affected
>
> [Test Case]
>
> Compile and boot tested
>
> [Where problems could occur]
>
> This fix affects those who use I2C protocol, an issue with this
> fix would be visible to the user via unexpected system behavior
> or a system crash.
>
> Wolfram Sang (1):
> i2c: smbus: fix NULL function pointer dereference
>
> drivers/i2c/i2c-core-base.c | 12 ++++++------
> 1 file changed, 6 insertions(+), 6 deletions(-)
>
Rejected for the following reasons:
Already applied for Noble update: v6.8.9 upstream stable release. Commit
updated with CVE number.
-Stefan
-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_0xE8675DEECBEECEA3.asc
Type: application/pgp-keys
Size: 48643 bytes
Desc: OpenPGP public key
URL: <https://lists.ubuntu.com/archives/kernel-team/attachments/20240704/7d1c0764/attachment-0001.key>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <https://lists.ubuntu.com/archives/kernel-team/attachments/20240704/7d1c0764/attachment-0001.sig>
More information about the kernel-team
mailing list