Received: by 2002:a89:2c3:0:b0:1ed:23cc:44d1 with SMTP id d3csp713368lqs;
        Tue, 5 Mar 2024 14:21:22 -0800 (PST)
X-Forwarded-Encrypted: i=3; AJvYcCXmuVXn6eaSVHeg95hY3e+RPJQkmBaEXw56OoilCPXfFQaf0JvA2CCFNOer8u6wuLhA5qGjiEhBS7C8gcOc6MjsDHn+6rlenRZVcny4Cw==
X-Google-Smtp-Source: AGHT+IFiiJXR84lwsejw19Nzu0J8HpxZbOiGJ7nZtPGmzZesmSuPHr/EHzxK/z42Q2iFNBsyFDsr
X-Received: by 2002:aa7:c85a:0:b0:564:7921:37c3 with SMTP id g26-20020aa7c85a000000b00564792137c3mr8957943edt.19.1709677282626;
        Tue, 05 Mar 2024 14:21:22 -0800 (PST)
ARC-Seal: i=2; a=rsa-sha256; t=1709677282; cv=pass;
        d=google.com; s=arc-20160816;
        b=aiMMuEwwkh10kElJGv+PVH2CWoCY89D5VXUPfpIB8TrODKJiitaCd+KA7N7Uz1nKSK
         0KLdxm1ZKhFzpdtD+O4Vj1lTQ6714/3No75lURKn3UUgowNY19S+sSYf2WRIj3psDT62
         aTgKxDKuDNcPYy/ahVJ4aUn1TYPbOTVjuuCTJ/spG3QITTMk1OIluCK6kjYafGDvJeFM
         4JT+IjK8ob2w9b+Gm1MbCEhpEXM9WJFmCe9IglmU3f30TEa3wqNmGZOspVfd9mDW0x1G
         +tUrLSQh3gf2XirOGJs62E1qVR344ZstbkkMjsHiWq9ChuBkC8CR5xG4YOfqpeabpc/Y
         L+vA==
ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=in-reply-to:content-disposition:mime-version:list-unsubscribe
         :list-subscribe:list-id:precedence:references:message-id:subject:cc
         :to:from:date:dkim-signature;
        bh=jZvGTC/1Vm/3uFlwHpyHiZmQjro2ExZPKk9urlkE9E4=;
        fh=3ynnNE0lEkjBsJ5xbg51H0hQnqZ5DhcMGpaBecNZL6M=;
        b=olIgIPH5y6uoYlt6QBLmHMJJDR2lE8vxVUzgdJnEzUulmcFaGJI786X58hr54JqZof
         VXqyJN7BkPrRs3OssWoW+P9VVabYMDTpgSFdcU2fc5g1+3B5JGyqpIWIgQmNFN3tj36T
         gOyLoZxhDjz/c5/W3gZNvvwJ982aH8AjWUghh5IHPYt2rv/SLfa+6F7zUQwNdtkghHLp
         pU5uKqRE+X3W4xxjd+A8HfwQxOb0hPWrFCchnZYEPkQTGRb8zWd9Hox9HWCWFiguvFlj
         fbiWiAWLnI6qjcZRmnO1hag+vYtk3VFM+G2RgZQHi1giexRYL57ctEZ7HXGEISPEseBf
         jF1w==;
        dara=google.com
ARC-Authentication-Results: i=2; mx.google.com;
       dkim=pass header.i=@linuxfoundation.org header.s=korg header.b=bPTXjEmR;
       arc=pass (i=1 dkim=pass dkdomain=linuxfoundation.org);
       spf=pass (google.com: domain of linux-kernel+bounces-93048-linux.lists.archive=gmail.com@vger.kernel.org designates 2604:1380:4601:e00::3 as permitted sender) smtp.mailfrom="linux-kernel+bounces-93048-linux.lists.archive=gmail.com@vger.kernel.org";
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=linuxfoundation.org
Return-Path: <linux-kernel+bounces-93048-linux.lists.archive=gmail.com@vger.kernel.org>
Received: from am.mirrors.kernel.org (am.mirrors.kernel.org. [2604:1380:4601:e00::3])
        by mx.google.com with ESMTPS id t19-20020a056402525300b00566c1bd2259si4900120edd.485.2024.03.05.14.21.22
        for <linux.lists.archive@gmail.com>
        (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
        Tue, 05 Mar 2024 14:21:22 -0800 (PST)
Received-SPF: pass (google.com: domain of linux-kernel+bounces-93048-linux.lists.archive=gmail.com@vger.kernel.org designates 2604:1380:4601:e00::3 as permitted sender) client-ip=2604:1380:4601:e00::3;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@linuxfoundation.org header.s=korg header.b=bPTXjEmR;
       arc=pass (i=1 dkim=pass dkdomain=linuxfoundation.org);
       spf=pass (google.com: domain of linux-kernel+bounces-93048-linux.lists.archive=gmail.com@vger.kernel.org designates 2604:1380:4601:e00::3 as permitted sender) smtp.mailfrom="linux-kernel+bounces-93048-linux.lists.archive=gmail.com@vger.kernel.org";
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=linuxfoundation.org
Received: from smtp.subspace.kernel.org (wormhole.subspace.kernel.org [52.25.139.140])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by am.mirrors.kernel.org (Postfix) with ESMTPS id 53B731F26303
	for <linux.lists.archive@gmail.com>; Tue,  5 Mar 2024 22:21:22 +0000 (UTC)
Received: from localhost.localdomain (localhost.localdomain [127.0.0.1])
	by smtp.subspace.kernel.org (Postfix) with ESMTP id 1CE1912D1FF;
	Tue,  5 Mar 2024 22:20:22 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org;
	dkim=pass (1024-bit key) header.d=linuxfoundation.org header.i=@linuxfoundation.org header.b="bPTXjEmR"
Received: from smtp.kernel.org (aws-us-west-2-korg-mail-1.web.codeaurora.org [10.30.226.201])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by smtp.subspace.kernel.org (Postfix) with ESMTPS id 3AAAB12D1FA
	for <linux-kernel@vger.kernel.org>; Tue,  5 Mar 2024 22:20:20 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org; arc=none smtp.client-ip=10.30.226.201
ARC-Seal:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116;
	t=1709677221; cv=none; b=TSBMYKguhjTr0HGqg8OtDzMrQ6A2WFbOwMogaZThnYcXvjo9VaOt+b7bms6DtX1DqHZxDlU3sbs3m0lCioVWJpgCT4ApK1OVdRPFZN7ZGIY5OHLSG+wG1AJLI1glvPQRjDuIF1CiZjdVaCCjLetW6kDUHpYk3cuAwpqn1t5U6XA=
ARC-Message-Signature:i=1; a=rsa-sha256; d=subspace.kernel.org;
	s=arc-20240116; t=1709677221; c=relaxed/simple;
	bh=ZTkmXtPxMavIvLui55rLxCNEIn2zGMJAQ36Kig5x2yo=;
	h=Date:From:To:Cc:Subject:Message-ID:References:MIME-Version:
	 Content-Type:Content-Disposition:In-Reply-To; b=SwvW++x1hrU3oghuhveOO9LC0ngUhWvNke5kPLvvVwwMHVQT75I2NizlKXGJrR56+LpeRKZ5TaaQASSN6+IRfwRBiQ0Zm0C3KBiPFQozmbIRGGrGK1EDytpyHsXPyz/C8Uh4bxfKVbfbVg3r6wqRUtiD5VGKBRFfWK7q/9ZMts8=
ARC-Authentication-Results:i=1; smtp.subspace.kernel.org; dkim=pass (1024-bit key) header.d=linuxfoundation.org header.i=@linuxfoundation.org header.b=bPTXjEmR; arc=none smtp.client-ip=10.30.226.201
Received: by smtp.kernel.org (Postfix) with ESMTPSA id 7DB09C433C7;
	Tue,  5 Mar 2024 22:20:20 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=linuxfoundation.org;
	s=korg; t=1709677220;
	bh=ZTkmXtPxMavIvLui55rLxCNEIn2zGMJAQ36Kig5x2yo=;
	h=Date:From:To:Cc:Subject:References:In-Reply-To:From;
	b=bPTXjEmRr2xT5Gi0he71DNjlJ4psENOp2G5NmwlG9FTl4mcaxd79gGP7RD5QmUWh0
	 b5zdg9KVADZ+LxlNjJd7RWZmPkGZcCF5ifE3ITRJZ3aJvR11eoJes35P648xGbRDsq
	 sH9ZfactiJZEIrgz1PbrCbiLui5xJzMugSSChYFQ=
Date: Tue, 5 Mar 2024 22:20:17 +0000
From: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
To: Michal Hocko <mhocko@suse.com>
Cc: cve@kernel.org, linux-kernel@vger.kernel.org
Subject: Re: CVE-2021-47090: mm/hwpoison: clear MF_COUNT_INCREASED before
 retrying get_any_page()
Message-ID: <2024030541-unhappily-staff-8662@gregkh>
References: <2024030413-CVE-2021-47090-a429@gregkh>
 <ZedoMIyhF8d_XLIV@tiehlicka>
Precedence: bulk
X-Mailing-List: linux-kernel@vger.kernel.org
List-Id: <linux-kernel.vger.kernel.org>
List-Subscribe: <mailto:linux-kernel+subscribe@vger.kernel.org>
List-Unsubscribe: <mailto:linux-kernel+unsubscribe@vger.kernel.org>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <ZedoMIyhF8d_XLIV@tiehlicka>

On Tue, Mar 05, 2024 at 07:45:04PM +0100, Michal Hocko wrote:
> On Mon 04-03-24 19:11:17, Greg KH wrote:
> > Description
> > ===========
> > 
> > In the Linux kernel, the following vulnerability has been resolved:
> > 
> > mm/hwpoison: clear MF_COUNT_INCREASED before retrying get_any_page()
> 
> I would like to dispute this CVE. The interface is behind CAP_SYSADMIN
> and allowing access to this to any untrusted party is risking serious
> troubles. This is a testing only feature.

This fixes a weakness in the kernel, one that is allowed to crash it,
why isn't that a good thing to have a CVE entry for?  Are we saying that
all VM_BUG_ON_PAGE() instances should not be accounted for?  That's not
what the config option for CONFIG_DEBUG_VM says, it just says it will
affect performance.

Also /sys/devices/system/memory/soft_offline_page doesn't say "can crash
the system", so it should work properly, even if an admin uses it, it
shouldn't shut the box down.

confused,

greg k-h