Received: by 2002:a05:7208:9594:b0:7e:5202:c8b4 with SMTP id gs20csp743289rbb; Sun, 25 Feb 2024 01:31:36 -0800 (PST) X-Forwarded-Encrypted: i=3; AJvYcCXhFhOeYmIQy1YOg+bxD6v0tCqqZlvtJ2Lm8Ipf2SWHPfC+e7lp1Mqy8rynrJk3lLUEmuPUoa3pZ9JH7tfsIhLQ7LLV3BQTPUMFVWz6DQ== X-Google-Smtp-Source: AGHT+IHcnqiHYRm9zVPNaXn3wTh/Sv4+RoX4NDZcK8fMQcSYpmdG3SuDm03hghFNKpWXYTPP4L9y X-Received: by 2002:a17:90a:d597:b0:29a:b4c5:eba7 with SMTP id v23-20020a17090ad59700b0029ab4c5eba7mr1334370pju.0.1708853496043; Sun, 25 Feb 2024 01:31:36 -0800 (PST) ARC-Seal: i=2; a=rsa-sha256; t=1708853496; cv=pass; d=google.com; s=arc-20160816; b=gCbLZ/MYswt7JmYs5yw6Pi9sTa4wzHecVhnWxZo1l+lr0SIWqws3uA00gKBG2aLov9 S56LPWQRwQ1JvHAx1qZZco/bc50zwhfuKazeEytTN251t9xrWj5pWXUWLYC3K50LMlOK rnl3L9st6erqcosNVeAPja1g4/Lnqu60K5zPd4wLo7IfgufUR0VXgOjFU8NFmF1FDxH7 Qrm7XJVdD+/ecRjNz5kLPbrBRheIU0Yj/XMyl//bRkbwVgIBTjczXC+QMOKpGY1oC6lA ftpug+bI8AgzIyHpw8/RviUhy9eXzadLP73mlo8ZbYTiy5LLrw+aFdt+Y4pSwvA+hfNY pL1g== ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=content-transfer-encoding:in-reply-to:autocrypt:from:references:cc :to:content-language:subject:user-agent:mime-version :list-unsubscribe:list-subscribe:list-id:precedence:date:message-id :dkim-signature; bh=nZu//8SLYFdX1uyMllnHusRP+H9LFbRJGvUGk75FZ9Q=; fh=veJOIIKxW9cQAe7UaiawcdX1KHpil11Wce2+RPA4/WM=; b=j02lK/QeIg+3mqMnKMuDfJ1HxvLD3PbIhlAk6F/jDMdVeIG+mYLikw+nn0v24bs8Ak bt6dnW12/FaGgjYBDp4S0+OrrR1144SDGVlJlTDjrHKUbSU/9+GmKZ46az3SJPh+Zm/k f4BilW1E3AK3++B74pAJKRLCat1tZEG3qiiQo13DEcy5qq1lBEayTZ8XHvpPCmmdOln7 V8DKrmbbrjJscARvUFMLxohBIdANwz9gC6oojP/Q0Cm6aJgkT/LKwn8O2lW9y9gq8jf1 4QZjnV8e1RR3a2NlFtdGC3eqF3ceGIwESDr61EwFKnkvuaAV/NK2s7LbdX6vCajfSLgY ZwAQ==; dara=google.com ARC-Authentication-Results: i=2; mx.google.com; dkim=pass header.i=@leemhuis.info header.s=he214686 header.b=zQ3K4wSd; arc=pass (i=1 spf=pass spfdomain=leemhuis.info dkim=pass dkdomain=leemhuis.info); spf=pass (google.com: domain of linux-kernel+bounces-80026-linux.lists.archive=gmail.com@vger.kernel.org designates 139.178.88.99 as permitted sender) smtp.mailfrom="linux-kernel+bounces-80026-linux.lists.archive=gmail.com@vger.kernel.org" Return-Path: Received: from sv.mirrors.kernel.org (sv.mirrors.kernel.org. [139.178.88.99]) by mx.google.com with ESMTPS id il8-20020a17090b164800b0029abd8f4384si137350pjb.70.2024.02.25.01.31.35 for (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Sun, 25 Feb 2024 01:31:36 -0800 (PST) Received-SPF: pass (google.com: domain of linux-kernel+bounces-80026-linux.lists.archive=gmail.com@vger.kernel.org designates 139.178.88.99 as permitted sender) client-ip=139.178.88.99; Authentication-Results: mx.google.com; dkim=pass header.i=@leemhuis.info header.s=he214686 header.b=zQ3K4wSd; arc=pass (i=1 spf=pass spfdomain=leemhuis.info dkim=pass dkdomain=leemhuis.info); spf=pass (google.com: domain of linux-kernel+bounces-80026-linux.lists.archive=gmail.com@vger.kernel.org designates 139.178.88.99 as permitted sender) smtp.mailfrom="linux-kernel+bounces-80026-linux.lists.archive=gmail.com@vger.kernel.org" Received: from smtp.subspace.kernel.org (wormhole.subspace.kernel.org [52.25.139.140]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by sv.mirrors.kernel.org (Postfix) with ESMTPS id 7FA68281F7C for ; Sun, 25 Feb 2024 09:31:35 +0000 (UTC) Received: from localhost.localdomain (localhost.localdomain [127.0.0.1]) by smtp.subspace.kernel.org (Postfix) with ESMTP id 3A3E0EED9; Sun, 25 Feb 2024 09:31:31 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; dkim=pass (2048-bit key) header.d=leemhuis.info header.i=@leemhuis.info header.b="zQ3K4wSd" Received: from wp530.webpack.hosteurope.de (wp530.webpack.hosteurope.de [80.237.130.52]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id 48B82EAC2 for ; Sun, 25 Feb 2024 09:31:28 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; arc=none smtp.client-ip=80.237.130.52 ARC-Seal:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1708853490; cv=none; b=t+jf4Z+Q4UI75JcT+gv3VoKDstn2pqUYDSOeYCG3qgfxrrXf1tUf3RIGDh3reyg0MQ/af2g3bWGhIBs5x8vOiXnZBJjPjKAm3vSz/cPVGVhqnupWsh9BX3Kd6Ekfv/bQ61unv8gJsusX+9D+/xTMGGElXhGxLMnOco/jWu83QfE= ARC-Message-Signature:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1708853490; c=relaxed/simple; bh=4+HI473Oyx8h7JPNGvY5gF0MM5J5uP2Yn53NS4Fs6WQ=; h=Message-ID:Date:MIME-Version:Subject:To:Cc:References:From: In-Reply-To:Content-Type; b=GYbT0urOVJJMubdDzJK7WkfhI4rf5ar022MhKpByKOx10CGyRPmerqNgLMWqG9dRpBXQVEURzS7O75uovg1kTpKbZzoHv35XOAHU1QhbFiXsoCWhxo8SuseUQHZwCvTO68ErscyWQNpMUqptqHBDk8n6SAfFJz8cZfAqSJjviE4= ARC-Authentication-Results:i=1; smtp.subspace.kernel.org; dmarc=none (p=none dis=none) header.from=leemhuis.info; spf=pass smtp.mailfrom=leemhuis.info; dkim=pass (2048-bit key) header.d=leemhuis.info header.i=@leemhuis.info header.b=zQ3K4wSd; arc=none smtp.client-ip=80.237.130.52 Authentication-Results: smtp.subspace.kernel.org; dmarc=none (p=none dis=none) header.from=leemhuis.info Authentication-Results: smtp.subspace.kernel.org; spf=pass smtp.mailfrom=leemhuis.info DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=leemhuis.info; s=he214686; h=Content-Transfer-Encoding:Content-Type: In-Reply-To:From:References:Cc:To:Subject:MIME-Version:Date:Message-ID:From: Sender:Reply-To:Subject:Date:Message-ID:To:Cc:MIME-Version:Content-Type: Content-Transfer-Encoding:Content-ID:Content-Description:In-Reply-To: References; bh=nZu//8SLYFdX1uyMllnHusRP+H9LFbRJGvUGk75FZ9Q=; t=1708853488; x=1709285488; b=zQ3K4wSdu56WnzsUhkHvvndqr1Qk8uXZpP3sgrnyqYbQ5fKWEat7C/vnRhxoT g+W9PknVaJANh5P8+r05gDyyEjSXqE05ageghBR24I6L9gY8+y0Nsyx5tbuO3s/p0UJF+iO+outO7 uICM7WGMjqwWs+yK6Ae/xN3j3/tcEGexZQu2ZsIZlAcTOsvRHKto577NyE0Jg/vHTc8gGqoxplQ5Y qNAzf7+0hmWNm4O3csi/xxGnPFZ4MjUzr3unxCA4fR/RfLbMRtmLh9gRpiZYOG51b9GG+jYrbW8c9 dc8rjrbEwlPthGyk5NLBxXyBJ+v02khX6rXfyc3Rd5dSyUgdCw==; Received: from [2a02:8108:8980:2478:8cde:aa2c:f324:937e]; authenticated by wp530.webpack.hosteurope.de running ExIM with esmtpsa (TLS1.3:ECDHE_RSA_AES_128_GCM_SHA256:128) id 1reAqt-0003h1-KB; Sun, 25 Feb 2024 10:31:19 +0100 Message-ID: <22f42e54-d791-42aa-88f3-172f616b8316@leemhuis.info> Date: Sun, 25 Feb 2024 10:31:19 +0100 Precedence: bulk X-Mailing-List: linux-kernel@vger.kernel.org List-Id: List-Subscribe: List-Unsubscribe: MIME-Version: 1.0 User-Agent: Mozilla Thunderbird Subject: Re: CVE-2024-26602: sched/membarrier: reduce the ability to hammer on sys_membarrier Content-Language: en-US, de-DE To: cve@kernel.org, linux-kernel@vger.kernel.org Cc: Greg Kroah-Hartman References: <2024022414-CVE-2024-26602-5e76@gregkh> From: Thorsten Leemhuis Autocrypt: addr=linux@leemhuis.info; keydata= xsFNBFJ4AQ0BEADCz16x4kl/YGBegAsYXJMjFRi3QOr2YMmcNuu1fdsi3XnM+xMRaukWby47 JcsZYLDKRHTQ/Lalw9L1HI3NRwK+9ayjg31wFdekgsuPbu4x5RGDIfyNpd378Upa8SUmvHik apCnzsxPTEE4Z2KUxBIwTvg+snEjgZ03EIQEi5cKmnlaUynNqv3xaGstx5jMCEnR2X54rH8j QPvo2l5/79Po58f6DhxV2RrOrOjQIQcPZ6kUqwLi6EQOi92NS9Uy6jbZcrMqPIRqJZ/tTKIR OLWsEjNrc3PMcve+NmORiEgLFclN8kHbPl1tLo4M5jN9xmsa0OZv3M0katqW8kC1hzR7mhz+ Rv4MgnbkPDDO086HjQBlS6Zzo49fQB2JErs5nZ0mwkqlETu6emhxneAMcc67+ZtTeUj54K2y Iu8kk6ghaUAfgMqkdIzeSfhO8eURMhvwzSpsqhUs7pIj4u0TPN8OFAvxE/3adoUwMaB+/plk sNe9RsHHPV+7LGADZ6OzOWWftk34QLTVTcz02bGyxLNIkhY+vIJpZWX9UrfGdHSiyYThHCIy /dLz95b9EG+1tbCIyNynr9TjIOmtLOk7ssB3kL3XQGgmdQ+rJ3zckJUQapLKP2YfBi+8P1iP rKkYtbWk0u/FmCbxcBA31KqXQZoR4cd1PJ1PDCe7/DxeoYMVuwARAQABzSdUaG9yc3RlbiBM ZWVtaHVpcyA8bGludXhAbGVlbWh1aXMuaW5mbz7CwZQEEwEKAD4CGwMFCwkIBwMFFQoJCAsF FgIDAQACHgECF4AWIQSoq8a+lZZX4oPULXVytubvTFg9LQUCX31PIwUJFmtPkwAKCRBytubv TFg9LWsyD/4t3g4i2YVp8RoKAcOut0AZ7/uLSqlm8Jcbb+LeeuzjY9T3mQ4ZX8cybc1jRlsL JMYL8GD3a53/+bXCDdk2HhQKUwBJ9PUDbfWa2E/pnqeJeX6naLn1LtMJ78G9gPeG81dX5Yq+ g/2bLXyWefpejlaefaM0GviCt00kG4R/mJJpHPKIPxPbOPY2REzWPoHXJpi7vTOA2R8HrFg/ QJbnA25W55DzoxlRb/nGZYG4iQ+2Eplkweq3s3tN88MxzNpsxZp475RmzgcmQpUtKND7Pw+8 zTDPmEzkHcUChMEmrhgWc2OCuAu3/ezsw7RnWV0k9Pl5AGROaDqvARUtopQ3yEDAdV6eil2z TvbrokZQca2808v2rYO3TtvtRMtmW/M/yyR233G/JSNos4lODkCwd16GKjERYj+sJsW4/hoZ RQiJQBxjnYr+p26JEvghLE1BMnTK24i88Oo8v+AngR6JBxwH7wFuEIIuLCB9Aagb+TKsf+0c HbQaHZj+wSY5FwgKi6psJxvMxpRpLqPsgl+awFPHARktdPtMzSa+kWMhXC4rJahBC5eEjNmP i23DaFWm8BE9LNjdG8Yl5hl7Zx0mwtnQas7+z6XymGuhNXCOevXVEqm1E42fptYMNiANmrpA OKRF+BHOreakveezlpOz8OtUhsew9b/BsAHXBCEEOuuUg87BTQRSeAENARAAzu/3satWzly6 +Lqi5dTFS9+hKvFMtdRb/vW4o9CQsMqL2BJGoE4uXvy3cancvcyodzTXCUxbesNP779JqeHy s7WkF2mtLVX2lnyXSUBm/ONwasuK7KLz8qusseUssvjJPDdw8mRLAWvjcsYsZ0qgIU6kBbvY ckUWkbJj/0kuQCmmulRMcaQRrRYrk7ZdUOjaYmjKR+UJHljxLgeregyiXulRJxCphP5migoy ioa1eset8iF9fhb+YWY16X1I3TnucVCiXixzxwn3uwiVGg28n+vdfZ5lackCOj6iK4+lfzld z4NfIXK+8/R1wD9yOj1rr3OsjDqOaugoMxgEFOiwhQDiJlRKVaDbfmC1G5N1YfQIn90znEYc M7+Sp8Rc5RUgN5yfuwyicifIJQCtiWgjF8ttcIEuKg0TmGb6HQHAtGaBXKyXGQulD1CmBHIW zg7bGge5R66hdbq1BiMX5Qdk/o3Sr2OLCrxWhqMdreJFLzboEc0S13BCxVglnPqdv5sd7veb 0az5LGS6zyVTdTbuPUu4C1ZbstPbuCBwSwe3ERpvpmdIzHtIK4G9iGIR3Seo0oWOzQvkFn8m 2k6H2/Delz9IcHEefSe5u0GjIA18bZEt7R2k8CMZ84vpyWOchgwXK2DNXAOzq4zwV8W4TiYi FiIVXfSj185vCpuE7j0ugp0AEQEAAcLBfAQYAQoAJgIbDBYhBKirxr6Vllfig9QtdXK25u9M WD0tBQJffU8wBQkWa0+jAAoJEHK25u9MWD0tv+0P/A47x8r+hekpuF2KvPpGi3M6rFpdPfeO RpIGkjQWk5M+oF0YH3vtb0+92J7LKfJwv7GIy2PZO2svVnIeCOvXzEM/7G1n5zmNMYGZkSyf x9dnNCjNl10CmuTYud7zsd3cXDku0T+Ow5Dhnk6l4bbJSYzFEbz3B8zMZGrs9EhqNzTLTZ8S Mznmtkxcbb3f/o5SW9NhH60mQ23bB3bBbX1wUQAmMjaDQ/Nt5oHWHN0/6wLyF4lStBGCKN9a TLp6E3100BuTCUCrQf9F3kB7BC92VHvobqYmvLTCTcbxFS4JNuT+ZyV+xR5JiV+2g2HwhxWW uC88BtriqL4atyvtuybQT+56IiiU2gszQ+oxR/1Aq+VZHdUeC6lijFiQblqV6EjenJu+pR9A 7EElGPPmYdO1WQbBrmuOrFuO6wQrbo0TbUiaxYWyoM9cA7v7eFyaxgwXBSWKbo/bcAAViqLW ysaCIZqWxrlhHWWmJMvowVMkB92uPVkxs5IMhSxHS4c2PfZ6D5kvrs3URvIc6zyOrgIaHNzR 8AF4PXWPAuZu1oaG/XKwzMqN/Y/AoxWrCFZNHE27E1RrMhDgmyzIzWQTffJsVPDMQqDfLBhV ic3b8Yec+Kn+ExIF5IuLfHkUgIUs83kDGGbV+wM8NtlGmCXmatyavUwNCXMsuI24HPl7gV2h n7RI In-Reply-To: <2024022414-CVE-2024-26602-5e76@gregkh> Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit X-bounce-key: webpack.hosteurope.de;linux@leemhuis.info;1708853488;dc8a1f6d; X-HE-SMSGID: 1reAqt-0003h1-KB On 24.02.24 15:57, Greg Kroah-Hartman wrote: > Description > =========== > > In the Linux kernel, the following vulnerability has been resolved: > > sched/membarrier: reduce the ability to hammer on sys_membarrier > > On some systems, sys_membarrier can be very expensive, causing overall > slowdowns for everything. So put a lock on the path in order to > serialize the accesses to prevent the ability for this to be called at > too high of a frequency and saturate the machine. > > The Linux kernel CVE team has assigned CVE-2024-26602 to this issue. > > > Affected and fixed versions > =========================== > > Issue introduced in 4.14 with commit c5f58bd58f43 and fixed in 4.19.307 with commit 3cd139875e9a > Issue introduced in 4.14 with commit c5f58bd58f43 and fixed in 5.4.269 with commit 2441a64070b8 > Issue introduced in 4.14 with commit c5f58bd58f43 and fixed in 5.10.210 with commit db896bbe4a9c > Issue introduced in 4.14 with commit c5f58bd58f43 and fixed in 5.15.149 with commit 50fb4e17df31 > Issue introduced in 4.14 with commit c5f58bd58f43 and fixed in 6.1.79 with commit 24ec7504a08a > Issue introduced in 4.14 with commit c5f58bd58f43 and fixed in 6.6.18 with commit b6a2a9cbb675 > Issue introduced in 4.14 with commit c5f58bd58f43 and fixed in 6.7.6 with commit c5b2063c65d0 > > Please see [...] Greg, JFYI, I noticed that this announcement did not refer to the fix in mainline (944d5fe50f3f03 ("sched/membarrier: reduce the ability to hammer on sys_membarrier")) while most of the others do that. I don't care at all, just noticed this by chance and wanted to let you know in case it's due to a bug in a script or something. I hope there is not a good reason for that difference I just failed to spot... (if that's the case: apologies in advance for the noise!). Ciao, Thorsten