ubuntu-kernel-tests

CVE-2016-3672 in ubuntu_cve_kernel failed with J-oem-6.0

Bug #1996174 reported by Po-Hsu Lin
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
ubuntu-kernel-tests
New
Undecided
Unassigned
linux-oem-6.0 (Ubuntu)
Invalid
Undecided
Unassigned
Jammy
Won't Fix
Undecided
Unassigned

Bug Description

Issue found with J-oem-6.0.0-1007

This is not a regression as this failure can be found with older kernel (6.0.0-1004.4) as well

Test log:
     START ubuntu_cve_kernel.CVE-2016-3672 ubuntu_cve_kernel.CVE-2016-3672 timestamp=1666797878 timeout=900 localtime=Oct 26 15:24:38
 Persistent state client._record_indent now set to 2
 Persistent state client.unexpected_reboot now set to ('ubuntu_cve_kernel.CVE-2016-3672', 'ubuntu_cve_kernel.CVE-2016-3672')
 Waiting for pid 55210 for 900 seconds
 System python is too old, crash handling disabled
 *** CVE-2016-3672 ***
 Running 'make -C /home/ubuntu/autotest/client/tests/ubuntu_cve_kernel/cves/CVE-2016-3672 check'
 [stdout] make: Entering directory '/home/ubuntu/autotest/client/tests/ubuntu_cve_kernel/cves/CVE-2016-3672'
 [stdout] gcc -o show_maps show_maps.c -m32
 [stdout] sudo -u ubuntu ./check.sh
 [stdout] make: Leaving directory '/home/ubuntu/autotest/client/tests/ubuntu_cve_kernel/cves/CVE-2016-3672'
 [stderr] make: *** [Makefile:11: check] Error 1

A manual test shows this test case is a bit flaky for some reason:
ubuntu@curly:~/autotest-client-tests/ubuntu_cve_kernel/cves/CVE-2016-3672$ for i in {1..10}; do make check; echo $?; make clean; done
gcc -o show_maps show_maps.c -m32
sudo -u ubuntu ./check.sh
0
rm -f show_maps
gcc -o show_maps show_maps.c -m32
sudo -u ubuntu ./check.sh
0
rm -f show_maps
gcc -o show_maps show_maps.c -m32
sudo -u ubuntu ./check.sh
0
rm -f show_maps
gcc -o show_maps show_maps.c -m32
sudo -u ubuntu ./check.sh
make: *** [Makefile:11: check] Error 1
2
rm -f show_maps
gcc -o show_maps show_maps.c -m32
sudo -u ubuntu ./check.sh
0
rm -f show_maps
gcc -o show_maps show_maps.c -m32
sudo -u ubuntu ./check.sh
make: *** [Makefile:11: check] Error 1
2
rm -f show_maps
gcc -o show_maps show_maps.c -m32
sudo -u ubuntu ./check.sh
0
rm -f show_maps
gcc -o show_maps show_maps.c -m32
sudo -u ubuntu ./check.sh
0
rm -f show_maps
gcc -o show_maps show_maps.c -m32
sudo -u ubuntu ./check.sh
0
rm -f show_maps
gcc -o show_maps show_maps.c -m32
sudo -u ubuntu ./check.sh
0
rm -f show_maps

I don't recall we have this issue with other kernels.

Revision history for this message
Po-Hsu Lin (cypressyew) wrote (last edit ):

This CVE is relatively old, we already got this commit in our tree:
$ git tag --contain 8b8addf891d
...
Ubuntu-oem-6.0-6.0.0-1005.5
Ubuntu-oem-6.0-6.0.0-1006.6
Ubuntu-oem-6.0-6.0.0-1007.7

It's unclear why this is still failing.

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3672

Timo Aaltonen (tjaalton)
Changed in linux-oem-6.0 (Ubuntu):
status: New → Invalid
Timo Aaltonen (tjaalton)
Changed in linux-oem-6.0 (Ubuntu Jammy):
status: New → Won't Fix
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.