oss-sec mailing list archives
Re: Linux kernel: multiple issues
From: Salvatore Bonaccorso <carnil () debian org>
Date: Tue, 30 Apr 2019 10:40:31 +0200
Hi, On Mon, Apr 29, 2019 at 09:15:28PM +0200, Salvatore Bonaccorso wrote:
Hi Jann, On Mon, Apr 29, 2019 at 02:56:06PM -0400, Jann Horn wrote:== missing locking between ELF coredump code and userfaultfd VMA modification == https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=04f5866e41fb70690e28397487d8bd8eea7d712a https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.114 https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.37 https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.0.10 https://bugs.chromium.org/p/project-zero/issues/detail?id=1790 CVE-2019-11599If I'm not mistaken, this was assigned already CVE-2019-3892, information from https://bugzilla.redhat.com/show_bug.cgi?id=1696015
FTR, CVE-2019-11599 was kept and CVE-2019-3892 REJECTed as reservation duplicate of CVE-2019-11599. Regards, Salvatore
Current thread:
- Linux kernel: multiple issues Jann Horn (Apr 29)
- Re: Linux kernel: multiple issues Salvatore Bonaccorso (Apr 29)
- Re: Linux kernel: multiple issues Salvatore Bonaccorso (Apr 30)
- Re: Linux kernel: multiple issues Salvatore Bonaccorso (Apr 29)