5.10 Backport Request: ovl: fail on invalid uid/gid mapping at copy up - Linux-stable-mirror - lists.linaro.org

List overview All Threads
Download

5.10 Backport Request: ovl: fail on invalid uid/gid mapping at copy up

[PATCH v1] usb: typec:...

stable/linux-5.4.y baseline: 168...

Nobel Barakat

28 Mar 2023 28 Mar '23

9:26 p.m.

SUBJECT: ovl: fail on invalid uid/gid mapping at copy up COMMIT: 4f11ada10d0ad3fd53e2bd67806351de63a4f9c3

Reason for request: This resolves CVE-2023-0386

CVE context: https://nvd.nist.gov/vuln/detail/CVE-2023-0386

Reply

Show replies by date

Nobel Barakat

28 Mar 28 Mar

11:01 p.m.

Sorry please ignore this, didn't realize the commit that introduced this issue landed on 5.11.

On Tue, Mar 28, 2023 at 2:26 PM Nobel Barakat nobelbarakat@google.com wrote:

SUBJECT: ovl: fail on invalid uid/gid mapping at copy up COMMIT: 4f11ada10d0ad3fd53e2bd67806351de63a4f9c3

Reason for request: This resolves CVE-2023-0386

CVE context: https://nvd.nist.gov/vuln/detail/CVE-2023-0386

Reply

Sasha Levin

30 Mar 30 Mar

11:33 p.m.

On Tue, Mar 28, 2023 at 04:01:24PM -0700, Nobel Barakat wrote:

Sorry please ignore this, didn't realize the commit that introduced this issue landed on 5.11.

Could you share your config? We're not seeing an issue on our end.

-- Thanks, Sasha

Reply

Nobel Barakat

31 Mar 31 Mar

12:11 a.m.

Here's a link to the config we use: https://cos.googlesource.com/third_party/kernel/+/refs/heads/cos-6.1/arch/x8...

Also, no issue here in this thread. The buggy commit looks like this one here: 459c7c565ac3: ovl: unprivieged mounts

Since this landed on 5.11, 5.10 doesn't need a backport.

Reply

538

days inactive

541

days old

linux-stable-mirror@lists.linaro.org

3 comments

participants

tags (0)

participants (2)

Nobel Barakat
Sasha Levin