On Tue, Apr 25, 2023 at 04:08:30PM +0200, Kristof Havasi wrote:
> Hi there,
>
> I was evaluating CVE-2022-3567 and CVE-2022-3566 which both
> revolt around load tearing and reference an ancient Kernel commit:
> > Fixes: 1da177e4c3f4 ("Linux-2.6.12-rc2")
>
> I am not sure whether they are applicable to the v5.4.y branch as well.
I do not know, what specific commits are you referring to? CVEs mean
nothing, they are not valid identifiers, sorry.
And have you tried applying them to the older kernels and testing to see
if they solve any specific issue?
Or better yet, why use the older kernels, why not stick to the most
recent one? What is preventing you from switching?
thanks,
gre gk-h
