On 06/08/2024 12.25, Jinjiang Tu wrote:I don't know if I'm understanding this right, do you mean the issue mentioned in
Hi, NiklasHi,
The commit 66cb618bf0bb ("usb: xhci: prevent potential failure in handle_tx_event() for Transfer events without TRB")
has been assigned with CVE-2024-42226, but the commit has been reverted in 6.1.99 and 6.6.39 due to
performance regression. Do you have a plan to address this issue, or if this CVE should be rejected?
Thanks!
Currently, I have no plan to address this issue.
The commit in question, was not intended for any previous Linux versions.
It was created as part of my handle_tx_event() rework series. Future changes
in said series could potentially trigger the issue, so preemptively preventing
it was both simpler and more secure.
Thanks,
Niklas