2023-05-30 13:36:07

by Dragos-Marian Panait

[permalink] [raw]
Subject: [PATCH 4.14 0/1] Hardening against CVE-2023-2002

The following commit is needed to harden against CVE-2023-2002:
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=000c2fa2c144c499c881a101819cf1936a1f7cf2

Ruihan Li (1):
bluetooth: Add cmd validity checks at the start of hci_sock_ioctl()

net/bluetooth/hci_sock.c | 28 ++++++++++++++++++++++++++++
1 file changed, 28 insertions(+)


base-commit: b3f141a5bc7f877e96528dd31a139854ec4d6017
--
2.40.1



2023-05-30 13:55:02

by Greg KH

[permalink] [raw]
Subject: Re: [PATCH 4.14 0/1] Hardening against CVE-2023-2002

On Tue, May 30, 2023 at 04:17:39PM +0300, Dragos-Marian Panait wrote:
> The following commit is needed to harden against CVE-2023-2002:
> https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=000c2fa2c144c499c881a101819cf1936a1f7cf2
>
> Ruihan Li (1):
> bluetooth: Add cmd validity checks at the start of hci_sock_ioctl()
>
> net/bluetooth/hci_sock.c | 28 ++++++++++++++++++++++++++++
> 1 file changed, 28 insertions(+)
>
>
> base-commit: b3f141a5bc7f877e96528dd31a139854ec4d6017
> --
> 2.40.1
>

Nit, for 1 patch series, no need for a cover letter, you can put the
same info below the --- line if that's easier.

thanks,

greg k-h