| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <2189111.1619022623@warthog.procyon.org.uk>
Date: Wed, 21 Apr 2021 17:30:23 +0100
From: David Howells <dhowells@...hat.com>
To: Greg Kroah-Hartman <gregkh@...uxfoundation.org>
Cc: dhowells@...hat.com, linux-kernel@...r.kernel.org,
Qiushi Wu <wu000273@....edu>,
Markus Elfring <Markus.Elfring@....de>
Subject: Re: [PATCH 047/190] Revert "rxrpc: Fix a memory leak in rxkad_verify_response()"
Greg Kroah-Hartman <gregkh@...uxfoundation.org> wrote:
> This reverts commit f45d01f4f30b53c3a0a1c6c1c154acb7ff74ab9f.
>
> Commits from @umn.edu addresses have been found to be submitted in "bad
> faith" to try to test the kernel community's ability to review "known
> malicious" changes. The result of these submissions can be found in a
> paper published at the 42nd IEEE Symposium on Security and Privacy
> entitled, "Open Source Insecurity: Stealthily Introducing
> Vulnerabilities via Hypocrite Commits" written by Qiushi Wu (University
> of Minnesota) and Kangjie Lu (University of Minnesota).
>
> Because of this, all submissions from this group must be reverted from
> the kernel tree and will need to be re-reviewed again to determine if
> they actually are a valid fix. Until that work is complete, remove this
> change to ensure that no problems are being introduced into the
> codebase.
>
> Cc: Qiushi Wu <wu000273@....edu>
> Cc: David Howells <dhowells@...hat.com>
> Cc: Markus Elfring <Markus.Elfring@....de>
> Signed-off-by: Greg Kroah-Hartman <gregkh@...uxfoundation.org>
This is actually a good patch, so please don't revert it.
David
Powered by blists - more mailing lists