[SRU,Mantic,0/1] CVE-2023-50431

Message ID	20240206213012.55794-1-bethany.jamison@canonical.com
Headers	show Return-Path: <kernel-team-bounces@lists.ubuntu.com> From: Bethany Jamison <bethany.jamison@canonical.com> To: kernel-team@lists.ubuntu.com Subject: [SRU][Mantic][PATCH 0/1] CVE-2023-50431 Date: Tue, 6 Feb 2024 15:30:11 -0600 Message-Id: <20240206213012.55794-1-bethany.jamison@canonical.com> MIME-Version: 1.0 Precedence: list Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 Errors-To: kernel-team-bounces@lists.ubuntu.com Sender: "kernel-team" <kernel-team-bounces@lists.ubuntu.com>
Series	CVE-2023-50431 \| expand [SRU,Mantic,0/1] CVE-2023-50431 [SRU,Mantic,1/1] accel/habanalabs: fix information leak in sec_attest_info()

Message ID

20240206213012.55794-1-bethany.jamison@canonical.com

Headers

From: Bethany Jamison <bethany.jamison@canonical.com>
To: kernel-team@lists.ubuntu.com
Subject: [SRU][Mantic][PATCH 0/1] CVE-2023-50431
Date: Tue,  6 Feb 2024 15:30:11 -0600
Message-Id: <20240206213012.55794-1-bethany.jamison@canonical.com>
MIME-Version: 1.0
Precedence: list
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
Errors-To: kernel-team-bounces@lists.ubuntu.com
Sender: "kernel-team" <kernel-team-bounces@lists.ubuntu.com>

Series

CVE-2023-50431 | expand

Message

Bethany Jamison Feb. 6, 2024, 9:30 p.m. UTC

[Impact]

sec_attest_info in drivers/accel/habanalabs/common/habanalabs_ioctl.c in
the Linux kernel through 6.6.5 allows an information leak to user space
because info->pad0 is not initialized.

[Fix]

Clean cherry-pick.

[Test Case]

Compile and boot tested.

[Regression Potential]

Issues could occur when setting hl_info_sec_attest struct.

Xingyuan Mo (1):
  accel/habanalabs: fix information leak in sec_attest_info()

 drivers/accel/habanalabs/common/habanalabs_ioctl.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

Comments

Andrei Gherzan Feb. 7, 2024, 10:18 a.m. UTC | #1

On 24/02/06 03:30PM, Bethany Jamison wrote:
> [Impact]
> 
> sec_attest_info in drivers/accel/habanalabs/common/habanalabs_ioctl.c in
> the Linux kernel through 6.6.5 allows an information leak to user space
> because info->pad0 is not initialized.
> 
> [Fix]
> 
> Clean cherry-pick.
> 
> [Test Case]
> 
> Compile and boot tested.
> 
> [Regression Potential]
> 
> Issues could occur when setting hl_info_sec_attest struct.
> 
> Xingyuan Mo (1):
>   accel/habanalabs: fix information leak in sec_attest_info()
> 
>  drivers/accel/habanalabs/common/habanalabs_ioctl.c | 2 +-
>  1 file changed, 1 insertion(+), 1 deletion(-)

Acked-by: Andrei Gherzan <andrei.gherzan@canonical.com>

Magali Lemes Feb. 7, 2024, 1:27 p.m. UTC | #2

On 06/02/2024 18:30, Bethany Jamison wrote:
> [Impact]
> 
> sec_attest_info in drivers/accel/habanalabs/common/habanalabs_ioctl.c in
> the Linux kernel through 6.6.5 allows an information leak to user space
> because info->pad0 is not initialized.
> 
> [Fix]
> 
> Clean cherry-pick.
> 
> [Test Case]
> 
> Compile and boot tested.
> 
> [Regression Potential]
> 
> Issues could occur when setting hl_info_sec_attest struct.
> 

Acked-by: Magali Lemes <magali.lemes@canonical.com>

> Xingyuan Mo (1):
>    accel/habanalabs: fix information leak in sec_attest_info()
> 
>   drivers/accel/habanalabs/common/habanalabs_ioctl.c | 2 +-
>   1 file changed, 1 insertion(+), 1 deletion(-)
>

Roxana Nicolescu Feb. 12, 2024, 8:07 a.m. UTC | #3

On 06/02/2024 22:30, Bethany Jamison wrote:
> [Impact]
>
> sec_attest_info in drivers/accel/habanalabs/common/habanalabs_ioctl.c in
> the Linux kernel through 6.6.5 allows an information leak to user space
> because info->pad0 is not initialized.
>
> [Fix]
>
> Clean cherry-pick.
>
> [Test Case]
>
> Compile and boot tested.
>
> [Regression Potential]
>
> Issues could occur when setting hl_info_sec_attest struct.
>
> Xingyuan Mo (1):
>    accel/habanalabs: fix information leak in sec_attest_info()
>
>   drivers/accel/habanalabs/common/habanalabs_ioctl.c | 2 +-
>   1 file changed, 1 insertion(+), 1 deletion(-)
>
Applied to mantic master-next branch. Thanks!