| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20250604-daft-nondescript-junglefowl-0abd5a@lemur> Date: Wed, 4 Jun 2025 16:11:21 -0400 From: Konstantin Ryabitsev <konstantin@...uxfoundation.org> To: Jan Kara <jack@...e.cz> Cc: Christian Brauner <brauner@...nel.org>, Alexander Viro <viro@...iv.linux.org.uk>, linux-fsdevel@...r.kernel.org, linux-kernel@...r.kernel.org, Luka <luka.2016.cs@...il.com> Subject: Re: [Bug] possible deadlock in vfs_rmdir in Linux kernel v6.12 On Wed, Jun 04, 2025 at 05:44:22PM +0200, Jan Kara wrote: > > Malicious in what sense? Is it just junk, or is it attempting to have > > maintainers perform some potentially dangerous operation? > > Well, useless it is for certain but links like: > > Bug Report: https://hastebin.com/share/pihohaniwi.bash > > Entire Log: https://hastebin.com/share/orufevoquj.perl > > are rather suspicious and suggest there's more in there than just a lack of > knowledge (but now that I've tried the suffixes seem to be automatically > added by some filetype detection logic in the hastebin.com site itself so > more likely this is not malicious after all). FWIW I've downloaded one of > the files through wget and looked into it and it seems to have a reasonable > content and does not seem malicious but it is difficult to be sure in the > maze of HTML and JS... Yes, hence my question. I think it's just a bad medium. It's actually the kind of thing that bugzilla is okay to use for -- create a bug with attachments and report it to the list, so maybe the original author can use that instead of pastebin sites? -K
Powered by blists - more mailing lists