From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <stable-owner@vger.kernel.org>
Received: from mail-wi0-f178.google.com ([209.85.212.178]:38443 "EHLO
	mail-wi0-f178.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
	with ESMTP id S1752045AbbGUNzX (ORCPT
	<rfc822;stable@vger.kernel.org>); Tue, 21 Jul 2015 09:55:23 -0400
Received: by wibxm9 with SMTP id xm9so57982445wib.1
        for <stable@vger.kernel.org>; Tue, 21 Jul 2015 06:55:22 -0700 (PDT)
Subject: Re: arm64/mm: Remove hack in mmap randomize layout
To: mbrugger@suse.com, stable@vger.kernel.org
References: <5009675.v9gvjRB4Io@ubix>
Cc: Will Deacon <will.deacon@arm.com>,
	Yann Droneaud <ydroneaud@opteya.com>
From: Jiri Slaby <jslaby@suse.cz>
Message-ID: <55AE4F47.5080409@suse.cz>
Date: Tue, 21 Jul 2015 15:55:19 +0200
MIME-Version: 1.0
In-Reply-To: <5009675.v9gvjRB4Io@ubix>
Content-Type: text/plain; charset=windows-1252
Content-Transfer-Encoding: 7bit
Sender: stable-owner@vger.kernel.org
List-ID: <stable.vger.kernel.org>

On 07/13/2015, 05:07 PM, Matthias Brugger wrote:
> Hi all,
> 
> Commit d6c763afab14 "arm64/mm: Remove hack in mmap randomize layout" fixes a 
> security issue which reduces the entropy for mmap base address by half [1]. 
> A attempt to guess where the stack is mapped via brute-force needs just half 
> the attempts.
> 
> I found this patch was added to v3.19-rc1 but should be added as well to:
> v3.18, v3.14, v3.12 and v3.10

Applied to 3.12. Thanks.

-- 
js
suse labs