Re: CVE-2025-38495: HID: core: ensure the allocated report buffer can contain the reserved report ID

Next message: Paolo Abeni: "Re: [PATCH net-next v12 2/5] net: phy: introduce PHY_INTERFACE_MODE_REVSGMII"
Previous message: Danilo Krummrich: "Re: [RFC v8 00/21] DRM scheduling cgroup controller"
In reply to: Siddh Raman Pant: "Re: CVE-2025-38495: HID: core: ensure the allocated report buffer can contain the reserved report ID"
Next in thread: Siddh Raman Pant: "Re: CVE-2025-38495: HID: core: ensure the allocated report buffer can contain the reserved report ID"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: gregkh@xxxxxxxxxxxxxxxxxxx

Date: Tue Sep 30 2025 - 06:59:06 EST

On Tue, Sep 30, 2025 at 10:54:06AM +0000, Siddh Raman Pant wrote:
> On Tue, Sep 30 2025 at 16:19:44 +0530, gregkh@xxxxxxxxxxxxxxxxxxx
> wrote:
> > What git id is that?
>
> 0d0777ccaa2d46609d05b66ba0096802a2746193

That commit id on its own does not "fix" anything that we can see, which
is why it was not given a CVE.

> > And this commit on its own fixes a problem, so it should be a separate
> > CVE, right?
>
> The reservation of 1st byte happens in the next commit.
>
> Not sure why the change was broken up into two.

Then the second change is the one that gets the CVE. Any "previous"
commits in a series that were preparing for the real fix are not called
out. As each CVE entry says, do NOT cherry-pick, but rather always take
all of the commits in the stable release.

thanks,

greg k-h