Re: CVE-2023-52920: bpf: support non-r10 register spill/fill to/from stack in precision tracking

From: Eduard Zingerman
Date: Fri Nov 08 2024 - 00:17:15 EST

Next message: Shung-Hsi Yu: "Re: CVE-2024-50063: bpf: Prevent tail call between progs attached to different hooks"
Previous message: Dragan Milivojević: "Re: [PATCH md-6.13] md: remove bitmap file support"
Next in thread: Tao Lyu: "Re: CVE-2023-52920: bpf: support non-r10 register spill/fill to/from stack in precision tracking"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Fri, 2024-11-08 at 12:42 +0800, Shung-Hsi Yu wrote:
> Hi Andrii and Eduard,

Hi Shung-Hsi,

> I'm trying to determine the security implication of CVE-2023-52920, or
> more specifically, what does commit 41f6f64e6999 ("bpf: support non-r10
> register spill/fill to/from stack in precision tracking") fix.
> Superficially this looks more like an improvement to the verifier.

It is my understanding as well, that this commit is an optimization to
avoid some precision marks. I do not see any security implications.

Thanks,
Eduard

[...]

Next message: Shung-Hsi Yu: "Re: CVE-2024-50063: bpf: Prevent tail call between progs attached to different hooks"
Previous message: Dragan Milivojević: "Re: [PATCH md-6.13] md: remove bitmap file support"
Next in thread: Tao Lyu: "Re: CVE-2023-52920: bpf: support non-r10 register spill/fill to/from stack in precision tracking"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]