[Devel] [PATCH vz7 0/6] user_namespace uidhash use after free
Alexander Atanasov
alexander.atanasov at virtuozzo.com
Thu Sep 28 21:19:46 MSK 2023
The first patch in the series is essential - it is the one fixing
the bug. Other patches accumulated while chasing the bug.
For a detailed explanation see the commit messages of first patch.
https://jira.vzint.dev/browse/PSBM-151029
Alexander Atanasov (3):
ve/userns: remove all hashed entries before freeing user_namespace
userns: initiallize user_init_ns earlier
lists: convert list.h to use READ/WRITE_ONCE
Francesco Ruggeri (1):
netfilter: compat: initialize all fields in xt_init
Kees Cook (1):
ipc/mqueue.c: only perform resource calculation if user valid
Li Rongqing (1):
ipc: prevent lockup on alloc_msg and free_msg
include/linux/list.h | 51 +++++++++++++++++++++-------------------
include/linux/sched.h | 1 +
ipc/mqueue.c | 27 +++++++++++++--------
ipc/msgutil.c | 6 +++++
kernel/user.c | 17 ++++++++++++++
kernel/user_namespace.c | 8 +++----
net/netfilter/x_tables.c | 2 +-
7 files changed, 73 insertions(+), 39 deletions(-)
--
2.39.3
More information about the Devel
mailing list