| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Mon, 7 Nov 2022 18:10:13 -0500
From: Paul Moore <paul@...l-moore.com>
To: Linus Torvalds <torvalds@...ux-foundation.org>
Cc: linux-security-module@...r.kernel.org, linux-kernel@...r.kernel.org
Subject: [GIT PULL] LSM fixes for v6.1 (#2)
Hi Linus,
A small capability patch to fix an instance of undefined behavior in a
shift operator caused when shifting a signed value too far. While the
fix is trivial and I can't imagine it causing a problem in a backport,
I'm not explicitly marking it for stable on the off chance that there
is some system out there which is relying on some wonky unexpected
behavior which this patch could break; *if* it does break, IMO it's
better that to happen in a minor or -rcX release and not in a stable
backport.
Please merge for v6.1-rcX.
-Paul
--
The following changes since commit 8cf0a1bc12870d148ae830a4ba88cfdf0e879cee:
capabilities: fix potential memleak on error path from vfs_getxattr_alloc()
(2022-10-28 06:44:33 -0400)
are available in the Git repository at:
git://git.kernel.org/pub/scm/linux/kernel/git/pcmoore/lsm.git
tags/lsm-pr-20221107
for you to fetch changes up to 46653972e3ea64f79e7f8ae3aa41a4d3fdb70a13:
capabilities: fix undefined behavior in bit shift for CAP_TO_MASK
(2022-11-0501:25:57 -0400)
----------------------------------------------------------------
lsm/stable-6.1 PR 20221107
----------------------------------------------------------------
Gaosheng Cui (1):
capabilities: fix undefined behavior in bit shift for CAP_TO_MASK
include/uapi/linux/capability.h | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
--
paul-moore.com
Powered by blists - more mailing lists