[-- Attachment #1: Type: text/plain, Size: 592 bytes --] Hi, Jan-san, Siemens team, There was some query to Siemens about the need of CVE-2020-25284 backporting. - CVE-2020-25284 is in rbd ( Ceph block device ). - it is only fixed for v4.19 and later stable kernels - Siemens has this built as a module in their 4.4-rt x86 config, but not their 4.19 one So the question from the Kernel Team is whether Siemens needs its backporting to 4.4-rt or not. Please take a look about the discussion at the IRC meeting yesterday. https://irclogs.baserock.org/meetings/cip/2020/09/cip.2020-09-17-09.00.log.html Best regards, -- M. Kudo [-- Attachment #2: Type: text/plain, Size: 420 bytes --] -=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#5464): https://lists.cip-project.org/g/cip-dev/message/5464 Mute This Topic: https://lists.cip-project.org/mt/76930681/4520388 Group Owner: cip-dev+owner@lists.cip-project.org Unsubscribe: https://lists.cip-project.org/g/cip-dev/leave/8129055/727948398/xyzzy [cip-dev@archiver.kernel.org] -=-=-=-=-=-=-=-=-=-=-=-
[-- Attachment #1: Type: text/plain, Size: 964 bytes --] On 18.09.20 15:58, masashi.kudo@cybertrust.co.jp wrote: > Hi, Jan-san, Siemens team, > > There was some query to Siemens about the need of CVE-2020-25284 backporting. > > - CVE-2020-25284 is in rbd ( Ceph block device ). > - it is only fixed for v4.19 and later stable kernels > - Siemens has this built as a module in their 4.4-rt x86 config, but not their 4.19 one > > So the question from the Kernel Team is whether Siemens needs its backporting to 4.4-rt or not. > Not to my best knowledge. This is very likely an accidental choice. Is that the only config in our repo carrying rbd/ceph? The we should likely drop that, to be clear also in the future. Jan > Please take a look about the discussion at the IRC meeting yesterday. > > https://irclogs.baserock.org/meetings/cip/2020/09/cip.2020-09-17-09.00.log.html > > Best regards, > -- > M. Kudo > -- Siemens AG, Corporate Technology, CT RDA IOT SES-DE Corporate Competence Center Embedded Linux [-- Attachment #2: Type: text/plain, Size: 420 bytes --] -=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#5465): https://lists.cip-project.org/g/cip-dev/message/5465 Mute This Topic: https://lists.cip-project.org/mt/76930681/4520388 Group Owner: cip-dev+owner@lists.cip-project.org Unsubscribe: https://lists.cip-project.org/g/cip-dev/leave/8129055/727948398/xyzzy [cip-dev@archiver.kernel.org] -=-=-=-=-=-=-=-=-=-=-=-
[-- Attachment #1: Type: text/plain, Size: 1731 bytes --] Hi, Jan-san, Thanks for your quick response! > Is that the only config in our repo carrying rbd/ceph? The we should likely drop > that, to be clear also in the future. When we discussed at the IRC, the config carrying rbd/ceph is only 4.4-rt x86. So, I understood that the backporting is not required. Best regards, -- M. Kudo > -----Original Message----- > From: Jan Kiszka <jan.kiszka@siemens.com> > Sent: Saturday, September 19, 2020 2:36 AM > To: 工藤 雅司(CTJ OSS事業推進室) <masashi.kudo@cybertrust.co.jp>; > cip-dev@lists.cip-project.org > Subject: Re: Is CVE-2020-25284 backporting needed for 4.4-rt x86? > > On 18.09.20 15:58, masashi.kudo@cybertrust.co.jp wrote: > > Hi, Jan-san, Siemens team, > > > > There was some query to Siemens about the need of CVE-2020-25284 > backporting. > > > > - CVE-2020-25284 is in rbd ( Ceph block device ). > > - it is only fixed for v4.19 and later stable kernels > > - Siemens has this built as a module in their 4.4-rt x86 config, but > > not their 4.19 one > > > > So the question from the Kernel Team is whether Siemens needs its backporting > to 4.4-rt or not. > > > > Not to my best knowledge. This is very likely an accidental choice. > > Is that the only config in our repo carrying rbd/ceph? The we should likely drop > that, to be clear also in the future. > > Jan > > > Please take a look about the discussion at the IRC meeting yesterday. > > > > https://irclogs.baserock.org/meetings/cip/2020/09/cip.2020-09-17-09.00 > > .log.html > > > > Best regards, > > -- > > M. Kudo > > > > -- > Siemens AG, Corporate Technology, CT RDA IOT SES-DE Corporate Competence > Center Embedded Linux [-- Attachment #2: Type: text/plain, Size: 420 bytes --] -=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#5466): https://lists.cip-project.org/g/cip-dev/message/5466 Mute This Topic: https://lists.cip-project.org/mt/76930681/4520388 Group Owner: cip-dev+owner@lists.cip-project.org Unsubscribe: https://lists.cip-project.org/g/cip-dev/leave/8129055/727948398/xyzzy [cip-dev@archiver.kernel.org] -=-=-=-=-=-=-=-=-=-=-=-
[-- Attachment #1: Type: text/plain, Size: 799 bytes --] Hi all, > -----Original Message----- > From: cip-dev@lists.cip-project.org [mailto:cip-dev@lists.cip-project.org] On Behalf Of > masashi.kudo@cybertrust.co.jp > Sent: Saturday, September 19, 2020 7:44 AM > To: jan.kiszka@siemens.com; cip-dev@lists.cip-project.org > Subject: Re: [cip-dev] Is CVE-2020-25284 backporting needed for 4.4-rt x86? > > Hi, Jan-san, > > Thanks for your quick response! > > > Is that the only config in our repo carrying rbd/ceph? The we should likely drop > > that, to be clear also in the future. > > When we discussed at the IRC, the config carrying rbd/ceph is only 4.4-rt x86. > > So, I understood that the backporting is not required. I removed CONFIG_BLK_DEV_RBD from 4.4.y-cip-rt/x86/siemens_i386-rt.config. Best regards, Nobuhiro [-- Attachment #2: Type: text/plain, Size: 420 bytes --] -=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#5490): https://lists.cip-project.org/g/cip-dev/message/5490 Mute This Topic: https://lists.cip-project.org/mt/76930681/4520388 Group Owner: cip-dev+owner@lists.cip-project.org Unsubscribe: https://lists.cip-project.org/g/cip-dev/leave/8129055/727948398/xyzzy [cip-dev@archiver.kernel.org] -=-=-=-=-=-=-=-=-=-=-=-