Re: CVE-2024-27406: lib/Kconfig.debug: TEST_IOV_ITER depends on MMU

From: Greg Kroah-Hartman
Date: Sun May 19 2024 - 04:53:23 EST

Next message: Greg KH: "Re: [PATCH 1/2] drm/rockchip: vop: clear DMA stop bit on flush on RK3066"
Previous message: Dmitry Baryshkov: "Re: [PATCH] drm/msm: Add obj flags to gpu devcoredump"
In reply to: Michal Koutný: "Re: CVE-2024-27406: lib/Kconfig.debug: TEST_IOV_ITER depends on MMU"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Fri, May 17, 2024 at 07:42:14PM +0200, Michal Koutný wrote:
> On Fri, May 17, 2024 at 01:40:41PM GMT, Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx> wrote:
> > BUG: failure at mm/nommu.c:318/vmap()!
> > Kernel panic - not syncing: BUG!
> >
> > The test calls vmap() directly, but vmap() is not supported on nommu
> > systems, causing the crash. TEST_IOV_ITER therefore needs to depend on
> > MMU.
>
> This is fixing mising assumption of a testing module.
> The BUG is deserved AFAIU. The CVE should be reverted IMO.

Many people/distros run the built-in unit tests at boot time, and having
crashes is not a good idea. So if you don't enable this option, great,
this CVE isn't relevent, but if you do, it's an in-kernel crash which is
not good, and this is the fix for that.

So I don't think this CVE should be rejected, sorry.

thanks,

greg k-h

Next message: Greg KH: "Re: [PATCH 1/2] drm/rockchip: vop: clear DMA stop bit on flush on RK3066"
Previous message: Dmitry Baryshkov: "Re: [PATCH] drm/msm: Add obj flags to gpu devcoredump"
In reply to: Michal Koutný: "Re: CVE-2024-27406: lib/Kconfig.debug: TEST_IOV_ITER depends on MMU"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]