* [cip-dev] Cip-kernel-sec Updates for Week of 2021-02-25
@ 2021-02-24 16:54 Chen-Yu Tsai (Moxa)
0 siblings, 0 replies; only message in thread
From: Chen-Yu Tsai (Moxa) @ 2021-02-24 16:54 UTC (permalink / raw)
To: Pavel Machek, Nobuhiro Iwamatsu, masashi.kudo; +Cc: cip-dev
[-- Attachment #1: Type: text/plain, Size: 1093 bytes --]
Five new issues this week:
- CVE-2020-24502 [e810: local DoS] - out-of-tree?
- CVE-2020-24503 [e810: local information leak] - out-of-tree?
- CVE-2020-24504 [e810: local DoS] - out-of-tree?
- CVE-2020-35501 [auditd: open_by_handle_at not covered by file watch] - no fix
- CVE-2021-3411 [broken KRETPROBES on x86] - fixed
Regarding e810, the Intel advisory  seems to be referring to the
out-of-tree driver, of which version 1.0.4 was released on 7/14/2020.
Also, a bug was found in the Debian import script. The script was not
picking up fixes which spanned multiple stable kernel releases. This
has now been fixed and a re-import was attempted, though it may be
insufficient to fix all the data already in the repository.
Last, CVE-2020-12362, CVE-2020-12363, and CVE-2020-12364 are now known
to be fixed by a firmware update. However to use the new firmware, a
kernel patch  is required.
[-- Attachment #2: Type: text/plain, Size: 428 bytes --]
Links: You receive all messages sent to this group.
View/Reply Online (#6194): https://lists.cip-project.org/g/cip-dev/message/6194
Mute This Topic: https://lists.cip-project.org/mt/80881316/4520388
Group Owner: email@example.com
Unsubscribe: https://lists.cip-project.org/g/cip-dev/leave/8129055/4520388/727948398/xyzzy [firstname.lastname@example.org]
^ permalink raw reply [flat|nested] only message in thread
only message in thread, back to index
Thread overview: (only message) (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2021-02-24 16:54 [cip-dev] Cip-kernel-sec Updates for Week of 2021-02-25 Chen-Yu Tsai (Moxa)
CIP-dev Archive on lore.kernel.org
Archives are clonable:
git clone --mirror https://lore.kernel.org/cip-dev/0 cip-dev/git/0.git
# If you have public-inbox 1.1+ installed, you may
# initialize and index your mirror using the following commands:
public-inbox-init -V2 cip-dev cip-dev/ https://lore.kernel.org/cip-dev \
Example config snippet for mirrors
Newsgroup available over NNTP:
AGPL code for this site: git clone https://public-inbox.org/public-inbox.git