[PATCH RFC 6.6.y 00/15] Some missing CVE fixes

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Hi,

We noticed some cases where a mainline commit that fixes a CVE has a
Fixes: tag pointing to a commit that has been backported to 6.6 but
where the fix is not present.

Harshit and I have backported some of these patches.

We are not subsystem experts and that's why we have marked this
series as RFC -- any review or feedback is welcome. We've tried to
document the conflicts and their causes in the changelogs. We haven't
done targeted testing beyond our usual stable tests, but this
includes for example the netfilter test suite, which did not show any
new failures.

Greg: feel free to take these patches or leave it as you want.
Conflict resolution always comes with the risk of missing something
and we want to be up-front about that. On the other hand, these were
identified as CVE fixes so presumably we're not the only ones who
want them.

[Note: we added some other people to Cc that we think would be
interested, let me know privately if you don't want to receive
emails like these in the future.]

Thanks,


Vegard

---

Benjamin Gaignard (1):
  media: usbtv: Remove useless locks in usbtv_video_free()

Chen Yu (1):
  efi/unaccepted: touch soft lockup during memory accept

Christophe JAILLET (1):
  null_blk: Remove usage of the deprecated ida_simple_xx() API

Luiz Augusto von Dentz (3):
  Bluetooth: hci_sock: Fix not validating setsockopt user input
  Bluetooth: ISO: Fix not validating setsockopt user input
  Bluetooth: L2CAP: Fix not validating setsockopt user input

Mads Bligaard Nielsen (1):
  drm/bridge: adv7511: fix crash on irq during probe

Mark Pearson (1):
  platform/x86: think-lmi: Fix password opcode ordering for workstations

Nicolin Chen (1):
  iommufd: Fix protection fault in iommufd_test_syz_conv_iova

Pablo Neira Ayuso (2):
  netfilter: nf_tables: fix memleak in map from abort path
  netfilter: nf_tables: restore set elements when delete set fails

Vladimir Oltean (1):
  net: dsa: fix netdev_priv() dereference before check on non-DSA
    netdevice events

Xiaolei Wang (1):
  net: stmmac: move the EST lock to struct stmmac_priv

Yu Kuai (1):
  null_blk: fix null-ptr-dereference while configuring 'power' and
    'submit_queues'

Zhihao Cheng (1):
  ubifs: ubifs_symlink: Fix memleak of inode->i_link in error path

 drivers/block/null_blk/main.c                 | 44 ++++++++------
 drivers/firmware/efi/unaccepted_memory.c      |  4 ++
 drivers/gpu/drm/bridge/adv7511/adv7511_drv.c  | 22 +++----
 drivers/iommu/iommufd/selftest.c              | 27 +++++++--
 drivers/media/usb/usbtv/usbtv-video.c         |  7 ---
 drivers/net/ethernet/stmicro/stmmac/stmmac.h  |  2 +
 .../net/ethernet/stmicro/stmmac/stmmac_ptp.c  |  8 +--
 .../net/ethernet/stmicro/stmmac/stmmac_tc.c   | 18 +++---
 drivers/platform/x86/think-lmi.c              | 16 +++---
 fs/ubifs/dir.c                                |  2 +
 include/linux/stmmac.h                        |  1 -
 net/bluetooth/hci_sock.c                      | 21 +++----
 net/bluetooth/iso.c                           | 36 ++++--------
 net/bluetooth/l2cap_sock.c                    | 52 +++++++----------
 net/dsa/slave.c                               |  7 ++-
 net/netfilter/nf_tables_api.c                 | 57 +++++++++++++++++--
 net/netfilter/nft_set_bitmap.c                |  4 +-
 net/netfilter/nft_set_hash.c                  |  8 +--
 net/netfilter/nft_set_pipapo.c                |  5 +-
 net/netfilter/nft_set_rbtree.c                |  4 +-
 20 files changed, 192 insertions(+), 153 deletions(-)

-- 
2.34.1





[Index of Archives]     [Linux Kernel]     [Kernel Development Newbies]     [Linux USB Devel]     [Video for Linux]     [Linux Audio Users]     [Yosemite Hiking]     [Linux Kernel]     [Linux SCSI]

  Powered by Linux