StarlingX

  1. Bug #1969605
  2. Comment #7

Comment 7 for bug 1969605

Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix merged to kernel (master)

Reviewed: https://review.opendev.org/c/starlingx/kernel/+/842252
Committed: https://opendev.org/starlingx/kernel/commit/769b2011c09299ff751f891151d53a12000100b3
Submitter: "Zuul (22348)"
Branch: master

commit 769b2011c09299ff751f891151d53a12000100b3
Author: Jiping Ma <email address hidden>
Date: Sun May 15 23:39:47 2022 -0700

    Debian: Update kernel to v5.10.112

    This commit updates kernel to 5.10.112 to fix many issues, including the
    following two CVE issues which were of special concern.
    - CVE-2022-0847: kernel: improper initialization of the "flags"
      member of the new pipe_buffer
    - CVE-2022-0435: kernel: remote stack overflow via kernel panic on
      systems using TIPC may lead to DoS
    Note we add more one commit
    https://git.yoctoproject.org/linux-yocto/commit/net/ipv4/inet_hashtables.c?h=v5.10/standard/preempt-rt/base&id=bd6e7290bc766ef13e42a1e37f75e6e708b4e317
    a minor fix-up on top of v5.10.112 for rt kernel.

    Verification:
    - Build kernel and out of tree modules success for rt and std.
    - Build iso success for rt and std.
    - Install success onto a All-in-One lab with iso.
    - Boot up successfully with qemu and lab.

    Partial-Bug: 1969605

    Signed-off-by: Jiping Ma <email address hidden>
    Change-Id: I9b126d1870cc1d14cb2dde4035d3fc73d8bc923b