[SRU,F,v2,0/1] UBUNTU: SAUCE: fix tcp NULL ptr deref

Message ID	20240906172347.17439-1-bethany.jamison@canonical.com
Headers	show Return-Path: <kernel-team-bounces@lists.ubuntu.com> From: Bethany Jamison <bethany.jamison@canonical.com> To: kernel-team@lists.ubuntu.com Subject: [SRU][F][PATCH v2 0/1] UBUNTU: SAUCE: fix tcp NULL ptr deref Date: Fri, 6 Sep 2024 12:23:46 -0500 Message-Id: <20240906172347.17439-1-bethany.jamison@canonical.com> MIME-Version: 1.0 Precedence: list Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 Errors-To: kernel-team-bounces@lists.ubuntu.com Sender: "kernel-team" <kernel-team-bounces@lists.ubuntu.com>
Series	UBUNTU: SAUCE: fix tcp NULL ptr deref \| expand [SRU,F,v2,0/1] UBUNTU: SAUCE: fix tcp NULL ptr deref [SRU,F,v2,1/1] UBUNTU: SAUCE: fix NULL ptr deref causing system crash

Message ID

20240906172347.17439-1-bethany.jamison@canonical.com

Headers

From: Bethany Jamison <bethany.jamison@canonical.com>
To: kernel-team@lists.ubuntu.com
Subject: [SRU][F][PATCH v2 0/1] UBUNTU: SAUCE: fix tcp NULL ptr deref
Date: Fri,  6 Sep 2024 12:23:46 -0500
Message-Id: <20240906172347.17439-1-bethany.jamison@canonical.com>
MIME-Version: 1.0
Precedence: list
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
Errors-To: kernel-team-bounces@lists.ubuntu.com
Sender: "kernel-team" <kernel-team-bounces@lists.ubuntu.com>

Series

UBUNTU: SAUCE: fix tcp NULL ptr deref | expand

Message

Bethany Jamison Sept. 6, 2024, 5:23 p.m. UTC

Buglink: https://bugs.launchpad.net/bugs/2077657

[Impact]

This patch fixes bug LP#2077657 where a system crash is reported due
to a NULL pointer dereference in TCP. This is because of issues
accurately tracking packets in the write or retransmit queues. This
patch checks that the skb is non-null before trying to read the 
timestamp.

[Fix]

add a check that the skb is non-null before trying to read the timestamp

[Test]

Compile tested

[Where problems could occur]

This fix affects those who use tcp, an issue with this fix would be 
visible to the user via a system crash.

v2: adjusted to better match stable patch format

Bethany Jamison (1):
  fix NULL ptr deref causing system crash

 include/net/tcp.h | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

Comments

Stefan Bader Sept. 9, 2024, 9:25 a.m. UTC | #1

On 06.09.24 19:23, Bethany Jamison wrote:
> Buglink: https://bugs.launchpad.net/bugs/2077657
> 
> [Impact]
> 
> This patch fixes bug LP#2077657 where a system crash is reported due
> to a NULL pointer dereference in TCP. This is because of issues
> accurately tracking packets in the write or retransmit queues. This
> patch checks that the skb is non-null before trying to read the
> timestamp.
> 
> [Fix]
> 
> add a check that the skb is non-null before trying to read the timestamp
> 
> [Test]
> 
> Compile tested
> 
> [Where problems could occur]
> 
> This fix affects those who use tcp, an issue with this fix would be
> visible to the user via a system crash.
> 
> v2: adjusted to better match stable patch format
> 
> Bethany Jamison (1):
>    fix NULL ptr deref causing system crash
> 
>   include/net/tcp.h | 3 ++-
>   1 file changed, 2 insertions(+), 1 deletion(-)
> 

This should have the justification in the bug report (best is adding it 
to the top of the original description). But also explain why this is 
done as a SAUCE patch and not by picking something from upstream. The 
latter is IMO even more important as we try to deviate as little as 
possible from upstream. This could otherwise impact stable updates.

-Stefan