From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <stable-owner@vger.kernel.org>
Received: from mail.linuxfoundation.org ([140.211.169.12]:45344 "EHLO
        mail.linuxfoundation.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S1752619AbdHWArj (ORCPT
        <rfc822;stable@vger.kernel.org>); Tue, 22 Aug 2017 20:47:39 -0400
Date: Tue, 22 Aug 2017 17:47:43 -0700
From: Greg KH <gregkh@linuxfoundation.org>
To: Megha Dey <megha.dey@linux.intel.com>
Cc: stable@vger.kernel.org
Subject: Re: [PATCH] crypto: x86/sha1 : Fix reads beyond the number of blocks
 passed
Message-ID: <20170823004743.GA7033@kroah.com>
References: <1503448863-30149-1-git-send-email-megha.dey@linux.intel.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <1503448863-30149-1-git-send-email-megha.dey@linux.intel.com>
Sender: stable-owner@vger.kernel.org
List-ID: <stable.vger.kernel.org>

On Tue, Aug 22, 2017 at 05:41:03PM -0700, Megha Dey wrote:
> It was reported that the sha1 AVX2 function(sha1_transform_avx2) is
> reading ahead beyond its intended data, and causing a crash if the next
> block is beyond page boundary:
> http://marc.info/?l=linux-crypto-vger&m=149373371023377
> 
> This patch makes sure that there is no overflow for any buffer length.
> 
> It passes the tests written by Jan Stancek that revealed this problem:
> https://github.com/jstancek/sha1-avx2-crash
> 
> This patch fixes reads beyond the number of blocks in the same way it
> was done in commit 8861249c740fc4af9ddc5aee321eafefb960d7c6
> ("crypto: x86/sha1 : Fix reads beyond the number of blocks passed").

So all you really want is that specific commit added to the stable
kernels?  If so, what kernel tree(s)?

thanks,

greg k-h