Return-Path: Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1751767AbcDUHMJ (ORCPT ); Thu, 21 Apr 2016 03:12:09 -0400 Received: from wtarreau.pck.nerim.net ([62.212.114.60]:21416 "EHLO 1wt.eu" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1751369AbcDUHMH (ORCPT ); Thu, 21 Apr 2016 03:12:07 -0400 Date: Thu, 21 Apr 2016 09:11:57 +0200 From: Willy Tarreau To: Jiri Slaby Cc: Sasha Levin , LKML , stable , lwn@lwn.net Subject: Re: stable-security kernel updates Message-ID: <20160421071157.GC9359@1wt.eu> References: <5717DD8A.4000707@oracle.com> <571876AB.2060106@suse.cz> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <571876AB.2060106@suse.cz> User-Agent: Mutt/1.5.24 (2015-08-30) Sender: linux-kernel-owner@vger.kernel.org List-ID: X-Mailing-List: linux-kernel@vger.kernel.org Content-Length: 1014 Lines: 28 Hi Jiri, On Thu, Apr 21, 2016 at 08:43:55AM +0200, Jiri Slaby wrote: > On 04/20/2016, 09:50 PM, Sasha Levin wrote: > > Updates for stable-security kernels have been released: > > > > - v3.12.58-security > > I suggest nobody uses that kernel. > > That tree does not make much sense to me. For example, what's the > purpose of "kernel: Provide READ_ONCE and ASSIGN_ONCE" (commit > 230fa253df6352af12ad0a16128760b5cb3f92df upstream) without actually > using the added macros (this commit was only a prerequisite)? > > Ok, not that bad, it is only unused code, but why are *not* these in the > security tree? > ipr: Fix out-of-bounds null overwrite > Input: powermate - fix oops with malicious USB descriptors > rapidio/rionet: fix deadlock on SMP This illustrates exactly what I suspected would happen because that's the same trouble we all face when picking backports for our respective trees except that since the selection barrier is much higher here, lots of important ones will be missing. Cheers, Willy