From: Greg KH <gregkh@linuxfoundation.org>
To: Jason Yan <yanaijie@huawei.com>
Cc: daniel@iogearbox.net, Jann Horn <jannh@google.com>,
ast@kernel.org, "zhangyi (F)" <yi.zhang@huawei.com>,
Zhaohongjiang <zhaohongjiang@huawei.com>,
netdev@vger.kernel.org, stable@vger.kernel.org
Subject: Re: 979d63d50c0c0f7bc537bf821e056cc9fe5abd38 bpf: prevent out of bounds speculation on pointer arithmetic
Date: Thu, 14 Mar 2019 07:57:07 -0700 [thread overview]
Message-ID: <20190314145707.GA12576@kroah.com> (raw)
In-Reply-To: <4cff80ab-7f29-8ef4-1d95-a2c0d4c4b9b8@huawei.com>
On Thu, Mar 14, 2019 at 10:41:57PM +0800, Jason Yan wrote:
>
>
> On 2019/3/13 0:22, Greg KH wrote:
> > On Tue, Mar 12, 2019 at 10:58:39PM +0800, Jason Yan wrote:
> > >
> > >
> > > On 2019/3/12 19:52, Greg KH wrote:
> > > > On Mon, Mar 11, 2019 at 05:18:33PM +0800, Jason Yan wrote:
> > > > > Hi, Daniel & Greg
> > > > >
> > > > > This patch (979d63d50c0c bpf: prevent out of bounds speculation on pointer
> > > > > arithmetic) was assigned a CVE (CVE-2019-7308) with a high score:
> > > > >
> > > > > CVSS v3.0 Severity and Metrics:
> > > > > Base Score: 9.8 CRITICAL
> > > > >
> > > > > And this patch is not in stable-4.4, would you please backport this patch to
> > > > > 4.4?
> > > >
> > > > For a bit more context, it's also not in 4.14.y, 4.9.y, or 4.4.y. I
> > > > found a backported series for 4.4.y in the SLES kernel tree that I could
> > > > try to import here if it really is a big deal.
> > > >
> > >
> > > I'm sorry that I did not find them. I only know the SLES kernel tree at:
> > > https://github.com/openSUSE/kernel.
> > > Is there another place for the SLES kernel tree?
> >
> > That's the tree you want, look at the SLES branches. I see the patches
> > backported to the SLE12-SP4 branch already, so that is hopefully a
> > working set of patches for 4.4.y.
> >
>
> I checked the SLE12-SP4 branch and the kernel version is 4.12. There is
> still a lot of conflicts even with 4.14.y. So it's hard to backport to
> 4.4.y. I will try to solve the conflicts with 4.14.y but I'm not sure if
> I can solve all the conflicts and finish this job.
Oops, try looking at the SLE12-SP3 branch, that is 4.4 based. I don't
know if they backported the patches there or not though.
thanks,
greg k-h
next prev parent reply other threads:[~2019-03-14 14:57 UTC|newest]
Thread overview: 11+ messages / expand[flat|nested] mbox.gz Atom feed top
2019-03-11 9:18 979d63d50c0c0f7bc537bf821e056cc9fe5abd38 bpf: prevent out of bounds speculation on pointer arithmetic Jason Yan
2019-03-11 9:41 ` Daniel Borkmann
2019-03-11 11:13 ` Jason Yan
2019-03-11 18:54 ` Greg KH
2019-03-12 2:01 ` Jason Yan
2019-03-12 11:52 ` Greg KH
2019-03-12 14:58 ` Jason Yan
2019-03-12 16:22 ` Greg KH
2019-03-14 14:41 ` Jason Yan
2019-03-14 14:57 ` Greg KH [this message]
2019-03-14 15:36 ` Jason Yan
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20190314145707.GA12576@kroah.com \
--to=gregkh@linuxfoundation.org \
--cc=ast@kernel.org \
--cc=daniel@iogearbox.net \
--cc=jannh@google.com \
--cc=netdev@vger.kernel.org \
--cc=stable@vger.kernel.org \
--cc=yanaijie@huawei.com \
--cc=yi.zhang@huawei.com \
--cc=zhaohongjiang@huawei.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.