Received: by 2002:ab2:2997:0:b0:1ec:cbc4:63fb with SMTP id n23csp502246lqb;
        Thu, 29 Feb 2024 07:09:35 -0800 (PST)
X-Forwarded-Encrypted: i=3; AJvYcCWcRf2Aq81UhKRCCbE08WQEQv0jnvSKc/JMyuTDw4sKLQBEsELZ7NRHdIENw86k0KIEjFeCU/RS6TGAGSQqFqGOFLJVYfpWe7AbV3s4Og==
X-Google-Smtp-Source: AGHT+IFjGNm3t/I2ie8zFdlV7Qz/e/Kiwtx7yUTHl7DRfZhq1clDY7kLpNKAXtFO8MUkj5uagjFz
X-Received: by 2002:a17:906:2795:b0:a44:3ec9:1fd3 with SMTP id j21-20020a170906279500b00a443ec91fd3mr1424567ejc.30.1709219374883;
        Thu, 29 Feb 2024 07:09:34 -0800 (PST)
ARC-Seal: i=2; a=rsa-sha256; t=1709219374; cv=pass;
        d=google.com; s=arc-20160816;
        b=DVewIXBjNXLxyZHUhB2CTKAt3JdBAZ9V7DZpUVY6cRlty1fj0sH8IN5+WfmhAvIWJf
         8nxJKBtgGWx5gfjH2VdaEHa8mTRkPUV+gozvhAfOWDocoQykFDj4ZYpLvKuPoBzaHwI/
         cGz8s9ZEOSPhPsa7rzky9UKo7UzD8S1JXcSl6ooSfY/GZtxvzDFWgzdvTsFNF3ODAkYn
         LIuBtN/Q8mCaG/VyEmwTNsyqaNP9ujFncdTbz6STl9T4r2W36pN1PpZppBR7BFvWD046
         SjNyArbHtNrp8WJ5mq/Wbq+O56jiI87ZgtQXFmdiM56+8nt7NXn5I9onJARgjYZxy5Ex
         6mgg==
ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=mime-version:list-unsubscribe:list-subscribe:list-id:precedence
         :user-agent:references:message-id:in-reply-to:subject:cc:to:from
         :date:dkim-signature;
        bh=QSavgdcQ8+EnO2VwbHvyVevwbWq1zvHCBS3TVF5kDsA=;
        fh=7A6BNOCUeLe+9dp+a4RubxNTGGccb8nCIxA4GCLggkk=;
        b=ljlk/PvP2JDrBR9nwOWAcmoksNbdkI3XwSl9yWkRn1gmZ69PyZiUi3o2+zGYkCdnjJ
         EZhE+mOb0sxQnDnf83pIXR7zysMwc4LHSWreIpfPOl3adh2fEZ5Vo5eyEn0hjZ/e9Ugz
         qsTlsNW2ZDvd2Xd7vsfO7DPw1Gf/XUHM085gwz9IoQkT5dn5pVlAre0N0rcoD3k3CtP7
         3rurp3ys+4f3MP3ykda1dxNQRpqhEJZ1UQZNNrlyE+VS6lOKuGxC3gdhbrO58yxzv9MW
         MdWJ/S/oJpJGsxSCPpAabzUg/0bVtQAF/4UzSxY87scX32ILUdM2UqhHNKS3Dg5w9AW8
         4HSA==;
        dara=google.com
ARC-Authentication-Results: i=2; mx.google.com;
       dkim=pass header.i=@kernel.org header.s=k20201202 header.b=bVv8bJf+;
       arc=pass (i=1 dkim=pass dkdomain=kernel.org);
       spf=pass (google.com: domain of linux-kernel+bounces-86897-linux.lists.archive=gmail.com@vger.kernel.org designates 2604:1380:4601:e00::3 as permitted sender) smtp.mailfrom="linux-kernel+bounces-86897-linux.lists.archive=gmail.com@vger.kernel.org";
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org
Return-Path: <linux-kernel+bounces-86897-linux.lists.archive=gmail.com@vger.kernel.org>
Received: from am.mirrors.kernel.org (am.mirrors.kernel.org. [2604:1380:4601:e00::3])
        by mx.google.com with ESMTPS id pv25-20020a170907209900b00a440cbf3d65si660613ejb.185.2024.02.29.07.09.34
        for <linux.lists.archive@gmail.com>
        (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
        Thu, 29 Feb 2024 07:09:34 -0800 (PST)
Received-SPF: pass (google.com: domain of linux-kernel+bounces-86897-linux.lists.archive=gmail.com@vger.kernel.org designates 2604:1380:4601:e00::3 as permitted sender) client-ip=2604:1380:4601:e00::3;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@kernel.org header.s=k20201202 header.b=bVv8bJf+;
       arc=pass (i=1 dkim=pass dkdomain=kernel.org);
       spf=pass (google.com: domain of linux-kernel+bounces-86897-linux.lists.archive=gmail.com@vger.kernel.org designates 2604:1380:4601:e00::3 as permitted sender) smtp.mailfrom="linux-kernel+bounces-86897-linux.lists.archive=gmail.com@vger.kernel.org";
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org
Received: from smtp.subspace.kernel.org (wormhole.subspace.kernel.org [52.25.139.140])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by am.mirrors.kernel.org (Postfix) with ESMTPS id 9A51C1F22819
	for <linux.lists.archive@gmail.com>; Thu, 29 Feb 2024 15:09:34 +0000 (UTC)
Received: from localhost.localdomain (localhost.localdomain [127.0.0.1])
	by smtp.subspace.kernel.org (Postfix) with ESMTP id B4666137778;
	Thu, 29 Feb 2024 15:09:27 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org;
	dkim=pass (2048-bit key) header.d=kernel.org header.i=@kernel.org header.b="bVv8bJf+"
Received: from smtp.kernel.org (aws-us-west-2-korg-mail-1.web.codeaurora.org [10.30.226.201])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by smtp.subspace.kernel.org (Postfix) with ESMTPS id E28FF13776F
	for <linux-kernel@vger.kernel.org>; Thu, 29 Feb 2024 15:09:26 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org; arc=none smtp.client-ip=10.30.226.201
ARC-Seal:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116;
	t=1709219367; cv=none; b=eKO6bjFoJxymsyjD2eG2rGU2WuHnQDozMKNbPA2MKeB3KjWMe4TQLzlebHn72MUFyOOxI9XZCKLKcPHNXILJ3vkUvV+zZ8ruVlriVd/n+unei2uCIoPDTjqZyMXvYL2oSvn5DOzu5WsmFGhzrihoFp1JmfIx1M0GUqDpC9tLyLc=
ARC-Message-Signature:i=1; a=rsa-sha256; d=subspace.kernel.org;
	s=arc-20240116; t=1709219367; c=relaxed/simple;
	bh=M5tYlHJqiKu98ugQTIytTFV0lJCmkjxpZ7krVLv0VxE=;
	h=Date:From:To:cc:Subject:In-Reply-To:Message-ID:References:
	 MIME-Version:Content-Type; b=hEbFrilBqyYNoZOhEUjxJk1qcTOEsUb67BHbS9szggnc/EDgGhabMOZALtoBQ4LUamW1H73QGbeF1N7npycTbDBvC4H6Qyp87l/nPMZaVm3F96voZpH31PFgPzmQ5NJYs7TTvi2yk9rjHkaPO27F/h/F0ix7CemHKpeP14+saRE=
ARC-Authentication-Results:i=1; smtp.subspace.kernel.org; dkim=pass (2048-bit key) header.d=kernel.org header.i=@kernel.org header.b=bVv8bJf+; arc=none smtp.client-ip=10.30.226.201
Received: by smtp.kernel.org (Postfix) with ESMTPSA id 3D72BC433C7;
	Thu, 29 Feb 2024 15:09:26 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org;
	s=k20201202; t=1709219366;
	bh=M5tYlHJqiKu98ugQTIytTFV0lJCmkjxpZ7krVLv0VxE=;
	h=Date:From:To:cc:Subject:In-Reply-To:References:From;
	b=bVv8bJf+9RIalLrYvHYD4n5kChaqJ52mya/6h90yQdiZQA4mVc0AH4RqA5nkTAb1o
	 FyNTQEMS7tXc+12CtulA/OpdPFkegRZUsl8ap8gmvzzVFOt3n/eEMvCbmIKIi8+SkR
	 YXLGt3iOYmv3UdX0t5i5GK9LO+w+ZcNDK+262Rp8XCS3n1VNPe8uJUwWemDhuxv/L1
	 bT5OpioVOvFpXRubon0rsC2V8m5tUzOEqVJNRvI5aKMcQ91iZBcxAj2ekTVF5K8ix7
	 RoWP8f7YlTXJk/dtcJpfPD+hYnzkBLoKd3RF+qZDKcGg8S7NFFEIUlZ91wQkK2sGVR
	 tHASwCcFREa0g==
Date: Thu, 29 Feb 2024 16:09:24 +0100 (CET)
From: Jiri Kosina <jikos@kernel.org>
To: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
cc: Michal Hocko <mhocko@suse.com>, Kees Cook <keescook@chromium.org>, 
    cve@kernel.org, linux-kernel@vger.kernel.org
Subject: Re: CVE-2023-52451: powerpc/pseries/memhp: Fix access beyond end of
 drmem array
In-Reply-To: <2024022913-borrower-resource-ecc9@gregkh>
Message-ID: <nycvar.YFH.7.76.2402291605370.4159@cbobk.fhfr.pm>
References: <2024022257-CVE-2023-52451-7bdb@gregkh> <Zdylmz28rZ-mCeiN@tiehlicka> <2024022639-wronged-grafted-6777@gregkh> <ZdytVTOgfvKBBvtn@tiehlicka> <202402271029.FD67395@keescook> <Zd8hPpP_6q_o8uQW@tiehlicka> <202402280906.D6D5590DB@keescook>
 <ZeA-281OudkWBhd_@tiehlicka> <2024022915-dissuade-grandson-ebd4@gregkh> <ZeBRZqJd5HAKaOfC@tiehlicka> <2024022913-borrower-resource-ecc9@gregkh>
User-Agent: Alpine 2.21 (LSU 202 2017-01-01)
Precedence: bulk
X-Mailing-List: linux-kernel@vger.kernel.org
List-Id: <linux-kernel.vger.kernel.org>
List-Subscribe: <mailto:linux-kernel+subscribe@vger.kernel.org>
List-Unsubscribe: <mailto:linux-kernel+unsubscribe@vger.kernel.org>
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII

On Thu, 29 Feb 2024, Greg Kroah-Hartman wrote:

> It's pretty trivial to get root on most of the "enterprise" kernels 

Wow, that's a very strong statement you are making here, and I'd now 
really like to ask you to back that up with some real data.

(or at least first clarify what exactly you mean when you are saying 
"enterprise kernels").

-- 
Jiri Kosina
SUSE Labs