| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20250729081824.85105-2-shung-hsi.yu@suse.com>
Date: Tue, 29 Jul 2025 16:18:23 +0800
From: Shung-Hsi Yu <shung-hsi.yu@...e.com>
To: Greg Kroah-Hartman <gregkh@...uxfoundation.org>,
cve@...nel.org
Cc: LKML <linux-kernel@...r.kernel.org>,
Michal Hocko <mhocko@...e.com>,
João Póvoas <joao.povoas@...e.com>,
Shung-Hsi Yu <shung-hsi.yu@...e.com>
Subject: [PATCH vulns 2/3] add a .vulnerable id for CVE-2023-52735
Jakub mentioned the vulnerable commit being c5d2177a72a1 ("bpf, sockmap:
Fix race in ingress receive verdict with redirect to self") in the
syzbot thread that found this issue (see link).
Link: https://lore.kernel.org/all/87k021m8an.fsf@cloudflare.com/
Signed-off-by: Shung-Hsi Yu <shung-hsi.yu@...e.com>
---
cve/published/2023/CVE-2023-52735.vulnerable | 1 +
1 file changed, 1 insertion(+)
create mode 100644 cve/published/2023/CVE-2023-52735.vulnerable
diff --git a/cve/published/2023/CVE-2023-52735.vulnerable b/cve/published/2023/CVE-2023-52735.vulnerable
new file mode 100644
index 000000000..d7bac065f
--- /dev/null
+++ b/cve/published/2023/CVE-2023-52735.vulnerable
@@ -0,0 +1 @@
+c5d2177a72a1659554922728fc407f59950aa929
--
2.50.1
Powered by blists - more mailing lists