* 5.10 Backport Request: ovl: fail on invalid uid/gid mapping at copy up
@ 2023-03-28 21:26 Nobel Barakat
2023-03-28 23:01 ` Nobel Barakat
0 siblings, 1 reply; 4+ messages in thread
From: Nobel Barakat @ 2023-03-28 21:26 UTC (permalink / raw)
To: stable
SUBJECT: ovl: fail on invalid uid/gid mapping at copy up
COMMIT: 4f11ada10d0ad3fd53e2bd67806351de63a4f9c3
Reason for request:
This resolves CVE-2023-0386
CVE context: https://nvd.nist.gov/vuln/detail/CVE-2023-0386
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: 5.10 Backport Request: ovl: fail on invalid uid/gid mapping at copy up
2023-03-28 21:26 5.10 Backport Request: ovl: fail on invalid uid/gid mapping at copy up Nobel Barakat
@ 2023-03-28 23:01 ` Nobel Barakat
2023-03-30 23:33 ` Sasha Levin
0 siblings, 1 reply; 4+ messages in thread
From: Nobel Barakat @ 2023-03-28 23:01 UTC (permalink / raw)
To: stable
Sorry please ignore this, didn't realize the commit that introduced
this issue landed on 5.11.
On Tue, Mar 28, 2023 at 2:26 PM Nobel Barakat <nobelbarakat@google.com> wrote:
>
> SUBJECT: ovl: fail on invalid uid/gid mapping at copy up
> COMMIT: 4f11ada10d0ad3fd53e2bd67806351de63a4f9c3
>
> Reason for request:
> This resolves CVE-2023-0386
>
> CVE context: https://nvd.nist.gov/vuln/detail/CVE-2023-0386
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: 5.10 Backport Request: ovl: fail on invalid uid/gid mapping at copy up
2023-03-28 23:01 ` Nobel Barakat
@ 2023-03-30 23:33 ` Sasha Levin
2023-03-31 0:11 ` Nobel Barakat
0 siblings, 1 reply; 4+ messages in thread
From: Sasha Levin @ 2023-03-30 23:33 UTC (permalink / raw)
To: Nobel Barakat; +Cc: stable
On Tue, Mar 28, 2023 at 04:01:24PM -0700, Nobel Barakat wrote:
>Sorry please ignore this, didn't realize the commit that introduced
>this issue landed on 5.11.
Could you share your config? We're not seeing an issue on our end.
--
Thanks,
Sasha
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: 5.10 Backport Request: ovl: fail on invalid uid/gid mapping at copy up
2023-03-30 23:33 ` Sasha Levin
@ 2023-03-31 0:11 ` Nobel Barakat
0 siblings, 0 replies; 4+ messages in thread
From: Nobel Barakat @ 2023-03-31 0:11 UTC (permalink / raw)
To: Sasha Levin; +Cc: stable
Here's a link to the config we use:
https://cos.googlesource.com/third_party/kernel/+/refs/heads/cos-6.1/arch/x86/configs/lakitu_defconfig
Also, no issue here in this thread. The buggy commit looks like this one here:
459c7c565ac3: ovl: unprivieged mounts
Since this landed on 5.11, 5.10 doesn't need a backport.
^ permalink raw reply [flat|nested] 4+ messages in thread
end of thread, other threads:[~2023-03-31 0:14 UTC | newest]
Thread overview: 4+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2023-03-28 21:26 5.10 Backport Request: ovl: fail on invalid uid/gid mapping at copy up Nobel Barakat
2023-03-28 23:01 ` Nobel Barakat
2023-03-30 23:33 ` Sasha Levin
2023-03-31 0:11 ` Nobel Barakat
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox