All of lore.kernel.org
 help / color / mirror / Atom feed
* CVE related consulting on linux-qoriq
@ 2020-03-25  3:35 zangrc
  2020-03-25  3:54 ` [meta-freescale] " Zhenhua Luo
  0 siblings, 1 reply; 4+ messages in thread
From: zangrc @ 2020-03-25  3:35 UTC (permalink / raw)
  To: meta-freescale

Hi,

Our team is going to work on the CVE correction of linux-qoriq.
I wonder if we submit such patches, will they be merged? If yes, which ML should I send?

Best Regards,
Zang Ruochen




^ permalink raw reply	[flat|nested] 4+ messages in thread
* Re: [meta-freescale] CVE related consulting on linux-qoriq
  2020-03-25  3:35 CVE related consulting on linux-qoriq zangrc
@ 2020-03-25  3:54 ` Zhenhua Luo
  2020-03-27  3:22   ` zangrc
  0 siblings, 1 reply; 4+ messages in thread
From: Zhenhua Luo @ 2020-03-25  3:54 UTC (permalink / raw)
  To: zangrc.fnst, meta-freescale

Hi Ruochen, 

Are those CVE patches developed for kernel tree or meta-freescale layer? May I know which kernel version you are working? I can check the process. 


Best Regards,

Zhenhua

> -----Original Message-----
> From: meta-freescale@lists.yoctoproject.org <meta-
> freescale@lists.yoctoproject.org> On Behalf Of zangrc via
> Lists.Yoctoproject.Org
> Sent: Wednesday, March 25, 2020 11:36 AM
> To: meta-freescale@lists.yoctoproject.org
> Cc: meta-freescale@lists.yoctoproject.org
> Subject: [meta-freescale] CVE related consulting on linux-qoriq
> 
> Hi,
> 
> Our team is going to work on the CVE correction of linux-qoriq.
> I wonder if we submit such patches, will they be merged? If yes, which ML
> should I send?
> 
> Best Regards,
> Zang Ruochen
> 
> 


^ permalink raw reply	[flat|nested] 4+ messages in thread
* Re: [meta-freescale] CVE related consulting on linux-qoriq
  2020-03-25  3:54 ` [meta-freescale] " Zhenhua Luo
@ 2020-03-27  3:22   ` zangrc
  2020-03-27  3:53     ` Zhenhua Luo
  0 siblings, 1 reply; 4+ messages in thread
From: zangrc @ 2020-03-27  3:22 UTC (permalink / raw)
  To: Zhenhua Luo; +Cc: meta-freescale

Hi,
Our team found that there are currently some CVE patches on some 
branches that are also applicable to other branches. May I ask if NXP 
has any corresponding measures to deal with this situation.
E.g:
CVE-2019-14814 has been fixed on the v5.3 branch and is not fixed on 
v4.19. But it also should be applied to v4.19.

Best Regards,
Zang Ruochen
On 3/25/20 11:54 AM, Zhenhua Luo wrote:
> Hi Ruochen,
>
> Are those CVE patches developed for kernel tree or meta-freescale layer? May I know which kernel version you are working? I can check the process.
>
>
> Best Regards,
>
> Zhenhua
>
>> -----Original Message-----
>> From: meta-freescale@lists.yoctoproject.org <meta-
>> freescale@lists.yoctoproject.org> On Behalf Of zangrc via
>> Lists.Yoctoproject.Org
>> Sent: Wednesday, March 25, 2020 11:36 AM
>> To: meta-freescale@lists.yoctoproject.org
>> Cc: meta-freescale@lists.yoctoproject.org
>> Subject: [meta-freescale] CVE related consulting on linux-qoriq
>>
>> Hi,
>>
>> Our team is going to work on the CVE correction of linux-qoriq.
>> I wonder if we submit such patches, will they be merged? If yes, which ML
>> should I send?
>>
>> Best Regards,
>> Zang Ruochen
>>
>>
>
>



^ permalink raw reply	[flat|nested] 4+ messages in thread
* Re: [meta-freescale] CVE related consulting on linux-qoriq
  2020-03-27  3:22   ` zangrc
@ 2020-03-27  3:53     ` Zhenhua Luo
  0 siblings, 0 replies; 4+ messages in thread
From: Zhenhua Luo @ 2020-03-27  3:53 UTC (permalink / raw)
  To: zangrc; +Cc: meta-freescale

Yes, the CVE fixes are integrated in SDK kernel, the patch of  CVE-2019-14814 will be included in the next LSDK which will be available in this April. 


Best Regards,

Zhenhua

> -----Original Message-----
> From: zangrc <zangrc.fnst@cn.fujitsu.com>
> Sent: Friday, March 27, 2020 11:22 AM
> To: Zhenhua Luo <zhenhua.luo@nxp.com>
> Cc: meta-freescale@lists.yoctoproject.org
> Subject: Re: [meta-freescale] CVE related consulting on linux-qoriq
> 
> Hi,
> Our team found that there are currently some CVE patches on some branches
> that are also applicable to other branches. May I ask if NXP has any
> corresponding measures to deal with this situation.
> E.g:
> CVE-2019-14814 has been fixed on the v5.3 branch and is not fixed on v4.19. But
> it also should be applied to v4.19.
> 
> Best Regards,
> Zang Ruochen
> On 3/25/20 11:54 AM, Zhenhua Luo wrote:
> > Hi Ruochen,
> >
> > Are those CVE patches developed for kernel tree or meta-freescale layer? May
> I know which kernel version you are working? I can check the process.
> >
> >
> > Best Regards,
> >
> > Zhenhua
> >
> >> -----Original Message-----
> >> From: meta-freescale@lists.yoctoproject.org <meta-
> >> freescale@lists.yoctoproject.org> On Behalf Of zangrc via
> >> Lists.Yoctoproject.Org
> >> Sent: Wednesday, March 25, 2020 11:36 AM
> >> To: meta-freescale@lists.yoctoproject.org
> >> Cc: meta-freescale@lists.yoctoproject.org
> >> Subject: [meta-freescale] CVE related consulting on linux-qoriq
> >>
> >> Hi,
> >>
> >> Our team is going to work on the CVE correction of linux-qoriq.
> >> I wonder if we submit such patches, will they be merged? If yes,
> >> which ML should I send?
> >>
> >> Best Regards,
> >> Zang Ruochen
> >>
> >>
> >
> >
> 


^ permalink raw reply	[flat|nested] 4+ messages in thread
end of thread, other threads:[~2020-03-27  3:53 UTC | newest]

Thread overview: 4+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2020-03-25  3:35 CVE related consulting on linux-qoriq zangrc
2020-03-25  3:54 ` [meta-freescale] " Zhenhua Luo
2020-03-27  3:22   ` zangrc
2020-03-27  3:53     ` Zhenhua Luo

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.