Received: by 2002:a89:413:0:b0:1fd:dba5:e537 with SMTP id m19csp176201lqs; Thu, 13 Jun 2024 07:15:05 -0700 (PDT) X-Forwarded-Encrypted: i=3; AJvYcCW3XpcHHOdrP82E2NbwI+N4HmSF98a8/DHK89zuACVHyoS/INpgCUB2mteHzGvQmJ6h7aPtk4y1DBqnzYgj2wsc8lNY9uq2FZujpdFusw== X-Google-Smtp-Source: AGHT+IFdWLu93q2/53+D/ZvmaMZxqiBVQDFQdys0neKHVpkhFUHqiM++cEUCjzbL+MQiM1xyJqIe X-Received: by 2002:a17:902:c943:b0:1f2:fcc0:66f with SMTP id d9443c01a7336-1f84e426989mr41652405ad.31.1718288105424; Thu, 13 Jun 2024 07:15:05 -0700 (PDT) ARC-Seal: i=2; a=rsa-sha256; t=1718288105; cv=pass; d=google.com; s=arc-20160816; b=F96nIzMXmHir6bfqE/rNAC2cAUP6xqwmPjm0UlEyuGUOW44Nt0fyCeuxSoF0y7j+k5 OPkPgPBBEBZEh6+f/ulFHloNZBBIFx5IrVwJMqrlZtEeHPc/FsBJWkrVGQu0WxCMxO0+ fa+jCioERRfidrVNsFvekB/aba3yCLN9VQ68vFrhGam4BfEY+U9oE2clcnFgqGTlJs9I nJVXXfh9foOrwxCPFLeIyqSvAf4Xh5WBKdyqIZgqZTpgpmpi2IqVFPATkFlqTXQdcmB3 tOtsVwNmbgg7aVkzL8/Ie5FXOBos5vRqhze/dcTI+bN4CFHNH7VZqFCee0rKTwG9RLCz KLkw== ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=in-reply-to:content-disposition:mime-version:list-unsubscribe :list-subscribe:list-id:precedence:references:message-id:subject:cc :to:from:date:dkim-signature; bh=KfGULQmDsy4xtREQtEVVibSIPG7lRPWl4JS1dcUTD5U=; fh=qyfc2eck1CqNrFda4j+5KFfdZSXh1ek21ws6co6vMZc=; b=WNDxxFLlTKzcWnLNb73a+DDgTBY9gHUquq+9V5d/OCMcUiiJfiV0Jil8BBCZMhLnD+ IIgdvOWtOkc3wtJo1qj3USHSLYddNAi9WpKClQ9Co6Pc+JnIiFD//yPZSGwF5/n7UI/d Pc5xmtyt6J7S0lIb16o2J/mmP3xORNuU340hUi8LBYuXer/949SuiNlB+fvLJBKDmLYd IHdJ7sTmTCL9TrYTlrRK/6YyS4Awvy0h4pOLRuFHLYQLfTR4lvqu25NdGayDFMaQhTFP exoh3RAgx5lF4ONs8VBmMTJWg3vs54RkAoQkkHI8/lCnQNCWP8MngW/WyC3MCV3KZRJD dMUg==; dara=google.com ARC-Authentication-Results: i=2; mx.google.com; dkim=pass header.i=@linuxfoundation.org header.s=korg header.b=ciXSBnat; arc=pass (i=1 dkim=pass dkdomain=linuxfoundation.org); spf=pass (google.com: domain of linux-kernel+bounces-213389-linux.lists.archive=gmail.com@vger.kernel.org designates 2604:1380:40f1:3f00::1 as permitted sender) smtp.mailfrom="linux-kernel+bounces-213389-linux.lists.archive=gmail.com@vger.kernel.org"; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=linuxfoundation.org Return-Path: Received: from sy.mirrors.kernel.org (sy.mirrors.kernel.org. [2604:1380:40f1:3f00::1]) by mx.google.com with ESMTPS id d9443c01a7336-1f855ed091dsi13895065ad.244.2024.06.13.07.15.04 for (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Thu, 13 Jun 2024 07:15:05 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel+bounces-213389-linux.lists.archive=gmail.com@vger.kernel.org designates 2604:1380:40f1:3f00::1 as permitted sender) client-ip=2604:1380:40f1:3f00::1; Authentication-Results: mx.google.com; dkim=pass header.i=@linuxfoundation.org header.s=korg header.b=ciXSBnat; arc=pass (i=1 dkim=pass dkdomain=linuxfoundation.org); spf=pass (google.com: domain of linux-kernel+bounces-213389-linux.lists.archive=gmail.com@vger.kernel.org designates 2604:1380:40f1:3f00::1 as permitted sender) smtp.mailfrom="linux-kernel+bounces-213389-linux.lists.archive=gmail.com@vger.kernel.org"; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=linuxfoundation.org Received: from smtp.subspace.kernel.org (wormhole.subspace.kernel.org [52.25.139.140]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by sy.mirrors.kernel.org (Postfix) with ESMTPS id B8847B2423D for ; Thu, 13 Jun 2024 14:00:28 +0000 (UTC) Received: from localhost.localdomain (localhost.localdomain [127.0.0.1]) by smtp.subspace.kernel.org (Postfix) with ESMTP id 4129D144D22; Thu, 13 Jun 2024 14:00:25 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; dkim=pass (1024-bit key) header.d=linuxfoundation.org header.i=@linuxfoundation.org header.b="ciXSBnat" Received: from smtp.kernel.org (aws-us-west-2-korg-mail-1.web.codeaurora.org [10.30.226.201]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id 57CA714265A; Thu, 13 Jun 2024 14:00:24 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; arc=none smtp.client-ip=10.30.226.201 ARC-Seal:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1718287224; cv=none; b=VfrFIN7Nyj8YFWz4dNIN5mqUi2lM9uF+q6Dmu6XMkJJ4aliuIUm14K0uNxJaFlShfHvv3/g2LyJcJ7bdMi0sWx5AFJVVabSAoAn+qgKi8W+qc6j0BYuSrm5Tia8blRTHnCv7ySyOlrLr42nhaIFajs8kj1wR57CRqCKzt/PWfLU= ARC-Message-Signature:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1718287224; c=relaxed/simple; bh=KfGULQmDsy4xtREQtEVVibSIPG7lRPWl4JS1dcUTD5U=; h=Date:From:To:Cc:Subject:Message-ID:References:MIME-Version: Content-Type:Content-Disposition:In-Reply-To; b=D/wB0DBe51tU4DINm+QPylSCQm9Cqp5VYFAEEueKglFcA8SPjR1SYXaPm6tO8JABwriKiihyIBGp6GxAt0d1AUbIJf3Xer0pPkCTp/Ovhf+SN9tB+JerAeZk5nVNrEsnFtbn6r6cwlSFaQ0QycgbgcaHDeQqujIRKm45Jt3vhrk= ARC-Authentication-Results:i=1; smtp.subspace.kernel.org; dkim=pass (1024-bit key) header.d=linuxfoundation.org header.i=@linuxfoundation.org header.b=ciXSBnat; arc=none smtp.client-ip=10.30.226.201 Received: by smtp.kernel.org (Postfix) with ESMTPSA id 9D42BC2BBFC; Thu, 13 Jun 2024 14:00:23 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=linuxfoundation.org; s=korg; t=1718287224; bh=KfGULQmDsy4xtREQtEVVibSIPG7lRPWl4JS1dcUTD5U=; h=Date:From:To:Cc:Subject:References:In-Reply-To:From; b=ciXSBnatRV+ezL2tZ7CczupLRroB4JKvY8iirYNxtrbYN1ujKhqDI4NpQlveMxFNl 4XUpXXDbIMZAhBy63XFJ3SR+XdZ2IgKbnad8BA0NMH2HqKSEGLNLcrW0r33uFbTnyG PifSLfLusiJ/lJHu/fBA4hQ9gjubPwYVzs1ELAAQ= Date: Thu, 13 Jun 2024 16:00:21 +0200 From: Greg Kroah-Hartman To: Michal Hocko Cc: cve@kernel.org, linux-kernel@vger.kernel.org, linux-cve-announce@vger.kernel.org, Tony Jones Subject: Re: CVE-2021-47543: perf report: Fix memory leaks around perf_tip() Message-ID: <2024061337-delegator-chafe-bf6d@gregkh> References: <2024052439-CVE-2021-47543-a01a@gregkh> Precedence: bulk X-Mailing-List: linux-kernel@vger.kernel.org List-Id: List-Subscribe: List-Unsubscribe: MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: On Mon, Jun 10, 2024 at 10:34:04AM +0200, Michal Hocko wrote: > As far as I understand this is a bug in perf (userspace tool). This can > occur when running 'perf report' which has a generally short lived > lifespan. Is this really a CVE fix? What is the actual security threat? You are correct, now rejected. > Btw. CVE-2021-47545 is another one matcing the same pattern. Thank you for noticing, also now rejected. greg k-h