| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <bfyuxaa7cantq2fvrgizsawyclaciifxub3lortq5oox44vlsd@rxwrvg2avew7> Date: Wed, 4 Jun 2025 17:44:22 +0200 From: Jan Kara <jack@...e.cz> To: Konstantin Ryabitsev <konstantin@...uxfoundation.org> Cc: Christian Brauner <brauner@...nel.org>, Alexander Viro <viro@...iv.linux.org.uk>, Jan Kara <jack@...e.cz>, linux-fsdevel@...r.kernel.org, linux-kernel@...r.kernel.org, Luka <luka.2016.cs@...il.com> Subject: Re: [Bug] possible deadlock in vfs_rmdir in Linux kernel v6.12 On Wed 04-06-25 10:45:49, Konstantin Ryabitsev wrote: > On Wed, Jun 04, 2025 at 09:45:23AM +0200, Christian Brauner wrote: > > Konstantin, this looks actively malicious. > > Can we do something about this list-wise? > > Malicious in what sense? Is it just junk, or is it attempting to have > maintainers perform some potentially dangerous operation? Well, useless it is for certain but links like: Bug Report: https://hastebin.com/share/pihohaniwi.bash Entire Log: https://hastebin.com/share/orufevoquj.perl are rather suspicious and suggest there's more in there than just a lack of knowledge (but now that I've tried the suffixes seem to be automatically added by some filetype detection logic in the hastebin.com site itself so more likely this is not malicious after all). FWIW I've downloaded one of the files through wget and looked into it and it seems to have a reasonable content and does not seem malicious but it is difficult to be sure in the maze of HTML and JS... Honza -- Jan Kara <jack@...e.com> SUSE Labs, CR
Powered by blists - more mailing lists