lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite for Android: free password hash cracker in your pocket
[<prev] [next>] [<thread-prev] [day] [month] [year] [list] 
Message-ID: <2026010609-exclusive-graded-7d86@gregkh>
Date: Tue, 6 Jan 2026 15:25:51 +0100
From: Greg KH <gregkh@...uxfoundation.org>
To: Quanmin Yan <yanquanmin1@...wei.com>
Cc: cve@...nel.org, linux-cve-announce@...r.kernel.org,
	linux-kernel@...r.kernel.org, pedrodemargomes@...il.com
Subject: Re: CVE-2025-68211: ksm: use range-walk function to jump over holes
 in scan_get_next_rmap_item

On Tue, Jan 06, 2026 at 09:36:29PM +0800, Quanmin Yan wrote:
> Hi gregkh,
> 
> I don't think this should be classified as a CVE because the
> patch primarily addresses a performance issue in a rare scenario.

But in that "rare scenario" it is a system denial of service, making
ksmd deadlocked.  Isn't that a real issue that was fixed here?

thanks,

greg k-h

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ