diff options
| author | David S. Miller <[email protected]> | 2023-08-02 10:06:06 +0100 |
|---|---|---|
| committer | David S. Miller <[email protected]> | 2023-08-02 10:06:06 +0100 |
| commit | 666c135b2d859a00ee74c8645b2affacfae45421 (patch) | |
| tree | de406f03ecfdcb5451f32266f745667bc0fb2848 /drivers/fpga/fpga-mgr.c | |
| parent | 31d49ba033095f6e8158c60f69714a500922e0c3 (diff) | |
| parent | 5c9241f3ceab3257abe2923a59950db0dc8bb737 (diff) | |
Merge branch 'tun-tap-uid'
Laszlo Ersek says:
====================
tun/tap: set sk_uid from current_fsuid()
The original patches fixing CVE-2023-1076 are incorrect in my opinion.
This small series fixes them up; see the individual commit messages for
explanation.
I have a very elaborate test procedure demonstrating the problem for
both tun and tap; it involves libvirt, qemu, and "crash". I can share
that procedure if necessary, but it's indeed quite long (I wrote it
originally for our QE team).
The patches in this series are supposed to "re-fix" CVE-2023-1076; given
that said CVE is classified as Low Impact (CVSSv3=5.5), I'm posting this
publicly, and not suggesting any embargo. Red Hat Product Security may
assign a new CVE number later.
I've tested the patches on top of v6.5-rc4, with "crash" built at commit
c74f375e0ef7.
Cc: Eric Dumazet <[email protected]>
Cc: Lorenzo Colitti <[email protected]>
Cc: Paolo Abeni <[email protected]>
Cc: Pietro Borrello <[email protected]>
Cc: [email protected]
Cc: [email protected]
====================
Signed-off-by: David S. Miller <[email protected]>
Diffstat (limited to 'drivers/fpga/fpga-mgr.c')
0 files changed, 0 insertions, 0 deletions