From 547529884880a7b3189453e66729ac516f6bc004 Mon Sep 17 00:00:00 2001 From: Salvatore Bonaccorso Date: Mon, 8 Aug 2022 11:18:17 +0200 Subject: Add CVE-2022-2590 --- active/CVE-2022-2590 | 13 +++++++++++++ 1 file changed, 13 insertions(+) create mode 100644 active/CVE-2022-2590 diff --git a/active/CVE-2022-2590 b/active/CVE-2022-2590 new file mode 100644 index 00000000..6db3de77 --- /dev/null +++ b/active/CVE-2022-2590 @@ -0,0 +1,13 @@ +Description: mm/gup: fix FOLL_FORCE COW security issue and remove FOLL_COW +References: + https://lore.kernel.org/linux-mm/20220808073232.8808-1-david@redhat.com/ +Notes: + carnil> Commit fixes 9ae0f87d009c ("mm/shmem: unconditionally set pte + carnil> dirty in mfill_atomic_install_pte") in 5.16-rc1. +Bugs: +upstream: needed +5.10-upstream-stable: N/A "Vulnerable code introduced later" +4.19-upstream-stable: N/A "Vulnerable code introduced later" +sid: needed +5.10-bullseye-security: N/A "Vulnerable code introduced later" +4.19-buster-security: N/A "Vulnerable code introduced later" -- cgit v1.2.3