* New kernel CVE
@ 2019-12-06 8:11 Yang, Cheng C
2019-12-09 3:38 ` Joel Stanley
0 siblings, 1 reply; 2+ messages in thread
From: Yang, Cheng C @ 2019-12-06 8:11 UTC (permalink / raw)
To: joel, openbmc
[-- Attachment #1: Type: text/plain, Size: 661 bytes --]
Hi Joel,
We found three CVE on our current OpenBMC kernel 5.3.11 which has been
fixed in kernel 5.4
Two of them are about crypto and the other is for trace. Do you have any
plan to update kernel to fix them?
https://nvd.nist.gov/vuln/detail/CVE-2019-19062
Fixed in
https://github.com/torvalds/linux/commit/ffdde5932042600c6807d46c1550b28b0db6a3bc
https://nvd.nist.gov/vuln/detail/CVE-2019-19072
Fixed in
https://github.com/torvalds/linux/commit/96c5c6e6a5b6db592acae039fed54b5c8844cd35
https://nvd.nist.gov/vuln/detail/CVE-2019-19050
Fixed in
https://github.com/torvalds/linux/commit/c03b04dcdba1da39903e23cc4d072abf8f68f2dd
Thank you very much!
[-- Attachment #2: Type: text/html, Size: 36954 bytes --]
^ permalink raw reply [flat|nested] 2+ messages in thread
* Re: New kernel CVE
2019-12-06 8:11 New kernel CVE Yang, Cheng C
@ 2019-12-09 3:38 ` Joel Stanley
0 siblings, 0 replies; 2+ messages in thread
From: Joel Stanley @ 2019-12-09 3:38 UTC (permalink / raw)
To: Yang, Cheng C; +Cc: OpenBMC Maillist
On Fri, 6 Dec 2019 at 08:11, Yang, Cheng C <cheng.c.yang@linux.intel.com> wrote:
>
> Hi Joel,
>
> We found three CVE on our current OpenBMC kernel 5.3.11 which has been fixed in kernel 5.4
>
> Two of them are about crypto and the other is for trace. Do you have any plan to update kernel to fix them?
Yes, we plan to move to the 5.4 kernel. This kernel is ready to go,
with the exception of the broken dbus-sensors application, which
itself depends on PECI being enabled in the kernel and userspace
headers.
This work is being tracked here:
https://github.com/openbmc/openbmc/issues/3634
Cheers,
Joel
>
>
>
> https://nvd.nist.gov/vuln/detail/CVE-2019-19062
>
> Fixed in https://github.com/torvalds/linux/commit/ffdde5932042600c6807d46c1550b28b0db6a3bc
>
>
>
> https://nvd.nist.gov/vuln/detail/CVE-2019-19072
>
> Fixed in https://github.com/torvalds/linux/commit/96c5c6e6a5b6db592acae039fed54b5c8844cd35
>
>
>
> https://nvd.nist.gov/vuln/detail/CVE-2019-19050
>
> Fixed in https://github.com/torvalds/linux/commit/c03b04dcdba1da39903e23cc4d072abf8f68f2dd
>
>
>
>
>
> Thank you very much!
^ permalink raw reply [flat|nested] 2+ messages in thread
end of thread, other threads:[~2019-12-09 3:38 UTC | newest]
Thread overview: 2+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2019-12-06 8:11 New kernel CVE Yang, Cheng C
2019-12-09 3:38 ` Joel Stanley
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).