On 5/27/21 7:37 PM, Ovidiu Panait wrote:
This patchset is based on Frank van der Linden's backport of CVE-2021-29155
fixes to 5.4 and 4.14:
https://lore.kernel.org/stable/20210429220839.15667-1-fllinden@xxxxxxxxxx/
https://lore.kernel.org/stable/20210501043014.33300-1-fllinden@xxxxxxxxxx/
You also need at least the first two:
* 3d0220f6861d713213b015b582e9f21e5b28d2e0 ("bpf: Wrap aux data inside bpf_sanitize_info container")
* bb01a1bba579b4b1c5566af24d95f1767859771e ("bpf: Fix mask direction swap upon off reg sign change")
* a7036191277f9fa68d92f2071ddc38c09b1e5ee5 ("bpf: No need to simulate speculative domain for immediates")
They already went to 5.4/5.10/5.12 stable.
Thanks,
Daniel
