[0/2,SRU,Trusty] Fix for CVE-2017-16644

Message ID	1532100671-30668-1-git-send-email-paolo.pisati@canonical.com
Headers	show Return-Path: <kernel-team-bounces@lists.ubuntu.com> From: Paolo Pisati <paolo.pisati@canonical.com> To: kernel-team@lists.ubuntu.com Subject: [PATCH 0/2] [SRU][Trusty] Fix for CVE-2017-16644 Date: Fri, 20 Jul 2018 17:31:09 +0200 Message-Id: <1532100671-30668-1-git-send-email-paolo.pisati@canonical.com> Precedence: list MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 Errors-To: kernel-team-bounces@lists.ubuntu.com Sender: "kernel-team" <kernel-team-bounces@lists.ubuntu.com>
Series	Fix for CVE-2017-16644 \| expand [0/2,SRU,Trusty] Fix for CVE-2017-16644 [1/2,media] hdpvr: Remove deprecated create_singlethread_workqueue [2/2] media: hdpvr: Fix an error handling path in hdpvr_probe()

Message ID

1532100671-30668-1-git-send-email-paolo.pisati@canonical.com

Headers

From: Paolo Pisati <paolo.pisati@canonical.com>
To: kernel-team@lists.ubuntu.com
Subject: [PATCH 0/2] [SRU][Trusty] Fix for CVE-2017-16644
Date: Fri, 20 Jul 2018 17:31:09 +0200
Message-Id: <1532100671-30668-1-git-send-email-paolo.pisati@canonical.com>
Precedence: list
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
Errors-To: kernel-team-bounces@lists.ubuntu.com
Sender: "kernel-team" <kernel-team-bounces@lists.ubuntu.com>

Series

Fix for CVE-2017-16644 | expand

Message

Paolo Pisati July 20, 2018, 3:31 p.m. UTC

https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-16644.html

The first patch is a prerequisite, that turns the second patch (the real fix)
into a clean cherry pick.

Arvind Yadav (1):
  media: hdpvr: Fix an error handling path in hdpvr_probe()

Bhaktipriya Shridhar (1):
  [media] hdpvr: Remove deprecated create_singlethread_workqueue

 drivers/media/usb/hdpvr/hdpvr-core.c  | 34 ++++++++++++++++------------------
 drivers/media/usb/hdpvr/hdpvr-video.c |  6 +++---
 drivers/media/usb/hdpvr/hdpvr.h       |  2 --
 3 files changed, 19 insertions(+), 23 deletions(-)

Comments

Stefan Bader July 23, 2018, 1:10 p.m. UTC | #1

On 20.07.2018 17:31, Paolo Pisati wrote:
> https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-16644.html
> 
> The first patch is a prerequisite, that turns the second patch (the real fix)
> into a clean cherry pick.
> 
> Arvind Yadav (1):
>   media: hdpvr: Fix an error handling path in hdpvr_probe()
> 
> Bhaktipriya Shridhar (1):
>   [media] hdpvr: Remove deprecated create_singlethread_workqueue
> 
>  drivers/media/usb/hdpvr/hdpvr-core.c  | 34 ++++++++++++++++------------------
>  drivers/media/usb/hdpvr/hdpvr-video.c |  6 +++---
>  drivers/media/usb/hdpvr/hdpvr.h       |  2 --
>  3 files changed, 19 insertions(+), 23 deletions(-)
> 
Acked-by: Stefan Bader <stefan.bader@canonical.com>

Both patches need the CVE number added. While probably the second patch could
have worked around the missing first one, it looks like it may have some benefit
in general.

-Stefan

Khalid Elmously July 24, 2018, 5:25 a.m. UTC | #2

On 2018-07-20 17:31:09 , Paolo Pisati wrote:
> https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-16644.html
> 
> The first patch is a prerequisite, that turns the second patch (the real fix)
> into a clean cherry pick.
> 
> Arvind Yadav (1):
>   media: hdpvr: Fix an error handling path in hdpvr_probe()
> 
> Bhaktipriya Shridhar (1):
>   [media] hdpvr: Remove deprecated create_singlethread_workqueue
> 
>  drivers/media/usb/hdpvr/hdpvr-core.c  | 34 ++++++++++++++++------------------
>  drivers/media/usb/hdpvr/hdpvr-video.c |  6 +++---
>  drivers/media/usb/hdpvr/hdpvr.h       |  2 --
>  3 files changed, 19 insertions(+), 23 deletions(-)
> 

Acked-by: Khalid Elmously <khalid.elmously@canonical.com>

Juerg Haefliger July 25, 2018, 7:47 a.m. UTC | #3

Applied to trusty master-next.

...Juerg


On 07/20/2018 05:31 PM, Paolo Pisati wrote:
> https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-16644.html
> 
> The first patch is a prerequisite, that turns the second patch (the real fix)
> into a clean cherry pick.
> 
> Arvind Yadav (1):
>   media: hdpvr: Fix an error handling path in hdpvr_probe()
> 
> Bhaktipriya Shridhar (1):
>   [media] hdpvr: Remove deprecated create_singlethread_workqueue
> 
>  drivers/media/usb/hdpvr/hdpvr-core.c  | 34 ++++++++++++++++------------------
>  drivers/media/usb/hdpvr/hdpvr-video.c |  6 +++---
>  drivers/media/usb/hdpvr/hdpvr.h       |  2 --
>  3 files changed, 19 insertions(+), 23 deletions(-)
>