On Wed, 2017-04-19 at 14:16 +0200, Greg Kroah-Hartman wrote: > On Tue, Apr 18, 2017 at 01:49:41AM +0100, Ben Hutchings wrote: > > Brad Spengler pointed out these fixes elsewhere: > > > > 43fab9793c1f [media] dvb-usb: don't use stack for firmware load > > 67b0503db9c2 [media] dvb-usb-firmware: don't do DMA on stack > > 3f190e3aec21 [media] cxusb: Use a dma capable buffer also for reading > > c4baad50297d virtio-console: avoid DMA from stack > > > > For 4.9, the first one needs some adjustment - use the attached patch. > > The rest apply cleanly. > > > > For 4.10, you can skip the first two as they've already been applied. > > Thanks for this shorter list. I'll go through the rest of the list of > patches that Brad pointed out on oss-security. > > Oh, and you did notice he said that > a4866aa81251 ("mm: Tighten x86 /dev/mem with zeroing reads") > should be applied to stable kernels, right? I've queued it up for the > ones I manage. Yes, though it's not a meaningful security fix by itself. Ben. -- Ben Hutchings Man invented language to satisfy his deep need to complain. - Lily Tomlin
Attachment:
signature.asc
Description: This is a digitally signed message part