| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Mon, 26 Apr 2021 18:58:11 +0200 From: Greg Kroah-Hartman <gregkh@...uxfoundation.org> To: Mika Westerberg <mika.westerberg@...ux.intel.com> Cc: linux-kernel@...r.kernel.org, Kangjie Lu <kjlu@....edu> Subject: Re: [PATCH 115/190] Revert "thunderbolt: Fix a missing check of kmemdup" On Thu, Apr 22, 2021 at 02:30:12PM +0300, Mika Westerberg wrote: > On Wed, Apr 21, 2021 at 02:59:50PM +0200, Greg Kroah-Hartman wrote: > > This reverts commit e4dfdd5804cce1255f99c5dd033526a18135a616. > > > > Commits from @umn.edu addresses have been found to be submitted in "bad > > faith" to try to test the kernel community's ability to review "known > > malicious" changes. The result of these submissions can be found in a > > paper published at the 42nd IEEE Symposium on Security and Privacy > > entitled, "Open Source Insecurity: Stealthily Introducing > > Vulnerabilities via Hypocrite Commits" written by Qiushi Wu (University > > of Minnesota) and Kangjie Lu (University of Minnesota). > > > > Because of this, all submissions from this group must be reverted from > > the kernel tree and will need to be re-reviewed again to determine if > > they actually are a valid fix. Until that work is complete, remove this > > change to ensure that no problems are being introduced into the > > codebase. > > This one too is valid. Now dropped, thanks. greg k-h
Powered by blists - more mailing lists