Re: CVE-2024-27429: netrom: Fix a data-race around sysctl_netrom_obsolescence_count_initialiser

From: Greg Kroah-Hartman
Date: Tue May 21 2024 - 10:42:30 EST

Next message: jim . cromie: "Re: [PATCH v8-RESEND 04/33] dyndbg: make ddebug_class_param union members same size"
Previous message: Greg Kroah-Hartman: "Re: CVE-2024-35906: drm/amd/display: Send DTBCLK disable message on first commit"
In reply to: Michal Hocko: "Re: CVE-2024-27429: netrom: Fix a data-race around sysctl_netrom_obsolescence_count_initialiser"
Next in thread: Michal Hocko: "Re: CVE-2024-27429: netrom: Fix a data-race around sysctl_netrom_obsolescence_count_initialiser"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, May 21, 2024 at 10:39:04AM +0200, Michal Hocko wrote:
> This and couple of others are all having the same pattern. Adding
> READ_ONCE for an integer value with a claim that this might race with
> sysctl updates. While the claim about the race is correct I fail to see
> how this could have any security consequences. Even if a partial write
> was observed which sounds _more_ than theoretical these all are merely
> timeouts and delays.
>
> Is there anything I am missing?

Nope, you are right, our fault, I'll go revoke this now.

Thanks for the review, it's much appreciated!

greg k-h

Next message: jim . cromie: "Re: [PATCH v8-RESEND 04/33] dyndbg: make ddebug_class_param union members same size"
Previous message: Greg Kroah-Hartman: "Re: CVE-2024-35906: drm/amd/display: Send DTBCLK disable message on first commit"
In reply to: Michal Hocko: "Re: CVE-2024-27429: netrom: Fix a data-race around sysctl_netrom_obsolescence_count_initialiser"
Next in thread: Michal Hocko: "Re: CVE-2024-27429: netrom: Fix a data-race around sysctl_netrom_obsolescence_count_initialiser"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]