Received: by 2002:ab2:69cc:0:b0:1fd:c486:4f03 with SMTP id n12csp278010lqp; Tue, 11 Jun 2024 04:30:32 -0700 (PDT) X-Forwarded-Encrypted: i=3; AJvYcCWPjtfpgAoFwd39MWPXtpfQiVzNUJ9IjMys+OWTKAjQ867rhMkIZle0YQbJMbFhIvBLECTyMtImIN/A6fZwz/6wbM1/OSx02YnlNj2hng== X-Google-Smtp-Source: AGHT+IET3S/oQcVtHQzUTQqUebEWzfocBY1UPnzzHHlMc5y9orgEoxGhFxmQX/+hPyHBPji0hazu X-Received: by 2002:a05:6122:16a1:b0:4de:daa8:b8e2 with SMTP id 71dfb90a1353d-4eb5621e208mr13519599e0c.3.1718105432730; Tue, 11 Jun 2024 04:30:32 -0700 (PDT) ARC-Seal: i=2; a=rsa-sha256; t=1718105432; cv=pass; d=google.com; s=arc-20160816; b=Gui2HzhpCUOakcf2wKwHyWb+INKsXcFKkgRo+cMxiWhvr5kL9mRsMXS5LdBVcgxcUt D7gWVqbfpi5P6IxYYJwAriR8tGSX6o2qhTpI9vdCvbr9YQrcSUEYHMozoR0CQK+vl+7d LW62F6B9fPPyqGh/82d0fTpFrJOp/QZ8CL/0JaZPWeKmXrDG4wCGw6cW/Q+1baWN8b2L 7Zvyr1cl88iDeYeU3seH0OaqqfuQ0bzu9T8HKyJjc64Swip8cwdfbeEkfWAWKWnEbfXg udtlkMmWrT6jEEskK/S6zQQlccP5W0kPQw2C+gXY/dk/1Xrd5zuMyXCxdyG+/l29Qv9x jXXw== ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=content-transfer-encoding:in-reply-to:from:references:cc:to:subject :user-agent:mime-version:list-unsubscribe:list-subscribe:list-id :precedence:date:message-id; bh=+fiuXo7lIlht2ePdSg1/3vdxAHHfyjQuGf2tP7zQcXQ=; fh=ipF4JuXUyySTQjUlAsOggBvregWk1etfdmQG1ma3ZNY=; b=Ra03X54PG6IJrOLI3ZBp7mm5ygnYin9cQxK862xPww0BdpSD66JPV0obp2uaOZDLIF hYnFNuvt2XdpUXydBzBfR+7fefz4VbCFwCzzWKSyw36vElolJNu1JUiiGzS4sYmHqTpd gTNUtu+yhI0MXbDi8U+4ozfNwEBgB2UDziBSKj/dQhRsQt1oejEWycOR6u2Ur7yn1uvz 4TmepdOrvkPEpTiiCdXnlX+p2jX/qwSXB+Hz8VKx0FHIdGij+eFKvFyQdmvVXeB+6b8q eNUBxZ6WFOfs9mqj/VKdpR4rEHE38iNaC4/73bBLb3CI5GuGUiENu2rClpdDnmPgDd/l 61JQ==; dara=google.com ARC-Authentication-Results: i=2; mx.google.com; arc=pass (i=1 spf=pass spfdomain=huawei.com dmarc=pass fromdomain=huawei.com); spf=pass (google.com: domain of linux-kernel+bounces-209739-linux.lists.archive=gmail.com@vger.kernel.org designates 2604:1380:45d1:ec00::1 as permitted sender) smtp.mailfrom="linux-kernel+bounces-209739-linux.lists.archive=gmail.com@vger.kernel.org"; dmarc=fail (p=QUARANTINE sp=QUARANTINE dis=NONE) header.from=huawei.com Return-Path: Received: from ny.mirrors.kernel.org (ny.mirrors.kernel.org. [2604:1380:45d1:ec00::1]) by mx.google.com with ESMTPS id af79cd13be357-7953284e5c9si1015906485a.101.2024.06.11.04.30.32 for (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Tue, 11 Jun 2024 04:30:32 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel+bounces-209739-linux.lists.archive=gmail.com@vger.kernel.org designates 2604:1380:45d1:ec00::1 as permitted sender) client-ip=2604:1380:45d1:ec00::1; Authentication-Results: mx.google.com; arc=pass (i=1 spf=pass spfdomain=huawei.com dmarc=pass fromdomain=huawei.com); spf=pass (google.com: domain of linux-kernel+bounces-209739-linux.lists.archive=gmail.com@vger.kernel.org designates 2604:1380:45d1:ec00::1 as permitted sender) smtp.mailfrom="linux-kernel+bounces-209739-linux.lists.archive=gmail.com@vger.kernel.org"; dmarc=fail (p=QUARANTINE sp=QUARANTINE dis=NONE) header.from=huawei.com Received: from smtp.subspace.kernel.org (wormhole.subspace.kernel.org [52.25.139.140]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ny.mirrors.kernel.org (Postfix) with ESMTPS id 069821C21F7C for ; Tue, 11 Jun 2024 11:30:32 +0000 (UTC) Received: from localhost.localdomain (localhost.localdomain [127.0.0.1]) by smtp.subspace.kernel.org (Postfix) with ESMTP id 5C2D517B419; Tue, 11 Jun 2024 11:30:27 +0000 (UTC) Received: from szxga05-in.huawei.com (szxga05-in.huawei.com [45.249.212.191]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id C24DF1509BC; Tue, 11 Jun 2024 11:30:23 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; arc=none smtp.client-ip=45.249.212.191 ARC-Seal:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1718105426; cv=none; b=Vx72NNQtGoKIOLi/t3ktEYh5VeDR7gv/zXTPM8lc3gsWT+HKngkQSt704bFdNZWujeFc7DSz/I+GvbYrE65FroDxxrmB4sEtmcA4HU3XpnuOetp3N0aiZErpQH1hmWSM6fgyfFWxjvd8H2ysPn6yDOe/Fp4/7Lu3flnRnxGREVo= ARC-Message-Signature:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1718105426; c=relaxed/simple; bh=fg8NiSElpPdhVE8j6zGK3dzwzl3ZHR6ya77REGJa4BU=; h=Message-ID:Date:MIME-Version:Subject:To:CC:References:From: In-Reply-To:Content-Type; b=u1HOj8h9FeXwgDcqjUwB1S0kzZ8B/SKutqHb4cTuCZ8Nd4q7bPnjx0SrYCpNcJKoi5FTurp87Q5wJFMjmmN6kdAGo7y+FDn5oMAKYKHeoIG+TOxQ1DaogSSt7aYi48wF5YRXIUs2I3z/Emq7i15urhLgxRebkcCw5NVozzLiU6Q= ARC-Authentication-Results:i=1; smtp.subspace.kernel.org; dmarc=pass (p=quarantine dis=none) header.from=huawei.com; spf=pass smtp.mailfrom=huawei.com; arc=none smtp.client-ip=45.249.212.191 Authentication-Results: smtp.subspace.kernel.org; dmarc=pass (p=quarantine dis=none) header.from=huawei.com Authentication-Results: smtp.subspace.kernel.org; spf=pass smtp.mailfrom=huawei.com Received: from mail.maildlp.com (unknown [172.19.162.112]) by szxga05-in.huawei.com (SkyGuard) with ESMTP id 4Vz5yg1S2xz1HDTq; Tue, 11 Jun 2024 19:28:27 +0800 (CST) Received: from dggpemd200001.china.huawei.com (unknown [7.185.36.224]) by mail.maildlp.com (Postfix) with ESMTPS id 305A714022E; Tue, 11 Jun 2024 19:30:21 +0800 (CST) Received: from [10.174.178.209] (10.174.178.209) by dggpemd200001.china.huawei.com (7.185.36.224) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.1258.34; Tue, 11 Jun 2024 19:30:20 +0800 Message-ID: <85948141-5eae-bb3d-cb39-62fc6ddfe476@huawei.com> Date: Tue, 11 Jun 2024 19:30:20 +0800 Precedence: bulk X-Mailing-List: linux-kernel@vger.kernel.org List-Id: List-Subscribe: List-Unsubscribe: MIME-Version: 1.0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:102.0) Gecko/20100101 Thunderbird/102.11.2 Subject: Re: CVE-2023-52666: ksmbd: fix potential circular locking issue in smb2_set_ea() To: , , CC: Greg Kroah-Hartman References: <2024051727-CVE-2023-52666-802b@gregkh> From: Wang Zhaolong In-Reply-To: <2024051727-CVE-2023-52666-802b@gregkh> Content-Type: text/plain; charset="UTF-8"; format=flowed Content-Transfer-Encoding: 7bit X-ClientProxiedBy: dggems703-chm.china.huawei.com (10.3.19.180) To dggpemd200001.china.huawei.com (7.185.36.224) > > The Linux kernel CVE team recommends that you update to the latest > stable kernel version for this, and many other bugfixes. Individual > changes are never tested alone, but rather are part of a larger kernel > release. Cherry-picking individual commits is not recommended or > supported by the Linux kernel community at all. If however, updating to > the latest release is impossible, the individual changes to resolve this > issue can be found at these commits: > https://git.kernel.org/stable/c/5349fd419e4f685d609c85b781f2b70f0fb14848 > https://git.kernel.org/stable/c/e61fc656ceeaec65f19a92f0ffbeb562b7941e8d > https://git.kernel.org/stable/c/e9ec6665de8f706b4f4133b87b2bd02a159ec57b > https://git.kernel.org/stable/c/ecfd93955994ecc2a1308f5ee4bd90c7fca9a8c6 > https://git.kernel.org/stable/c/6fc0a265e1b932e5e97a038f99e29400a93baad0 Hello. Is this a valid CVE patch? I noticed that the introduced `get_write` is not being used within the function, and there are no follow-up patches addressing this. Best regards, Wang Zhaolong