| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20251218032327.199721-1-wangjinchao600@gmail.com> Date: Thu, 18 Dec 2025 11:23:23 +0800 From: Jinchao Wang <wangjinchao600@...il.com> To: Alexander Viro <viro@...iv.linux.org.uk>, Christian Brauner <brauner@...nel.org>, Jan Kara <jack@...e.cz>, Kees Cook <kees@...nel.org>, linux-fsdevel@...r.kernel.org, linux-mm@...ck.org, linux-kernel@...r.kernel.org Cc: Jinchao Wang <wangjinchao600@...il.com>, stable@...r.kernel.org, syzbot+9ca2c6e6b098bf5ae60a@...kaller.appspotmail.com Subject: [PATCH] exec: do not call sched_mm_cid_after_execve() on exec fail sched_mm_cid_after_execve() is called from the failure path of bprm_execve(). At that point exec has not completed successfully, so updating the mm CID state is incorrect and can trigger a panic, as reported by syzbot. Remove the call from the exec failure path. Cc: stable@...r.kernel.org Reported-by: syzbot+9ca2c6e6b098bf5ae60a@...kaller.appspotmail.com Signed-off-by: Jinchao Wang <wangjinchao600@...il.com> --- fs/exec.c | 1 - 1 file changed, 1 deletion(-) diff --git a/fs/exec.c b/fs/exec.c index 9d5ebc9d15b0..9044a75d26ab 100644 --- a/fs/exec.c +++ b/fs/exec.c @@ -1773,7 +1773,6 @@ static int bprm_execve(struct linux_binprm *bprm) if (bprm->point_of_no_return && !fatal_signal_pending(current)) force_fatal_sig(SIGSEGV); - sched_mm_cid_after_execve(current); rseq_force_update(); current->in_execve = 0; -- 2.43.0
Powered by blists - more mailing lists