On Wed, Dec 13, 2017 at 01:30:52PM -0800, Guenter Roeck wrote:
> Hi Greg,
>
> I am looking into fixing CVE-2017-12190 in chromeos-4.4.
> The fix requires two patches, 95d78c28b5a85 ("fix unbalanced
> page refcounting in bio_map_user_iov") and 2b04e8f6bbb1 ("more
> bio_map_user_iov() leak fixes"). I noticed that the second patch
> has not been applied to linux-4.4.y. Is that due to the conflict,
> or was there a conscious decision not to apply it ?
>
> On a side note, is there a working archive for stable@xxxxxxxxxxxxxxx ?
> The one listed at vger.kernel.org (gmane) doesn't work.
>
Never mind, the list archive is at http://www.spinics.net/lists/stable/,
and the patch wasn't applied due to a conflict [1]. I'll prepare a patch.
Guenter
---
[1] https://www.spinics.net/lists/stable/msg193467.html