On 2024/8/14 17:32, Mikko Rapeli wrote: > Hi, > > On Wed, Aug 14, 2024 at 04:57:05PM +0800, He Zhe via lists.yoctoproject.org > wrote: >> Back-port two commits to fix CVE-2023-52735 >> >> [2/2] is the CVE-2023-52735 fix. >> [2/2] depends on [1/2]. >> [1/2] has been included in v5.10.222, so when update to v5.10.222+ we will >> only need [2/2]. > I wonder if these fixes are for a backported feature which is not in > upstream stable linux-5.10.y branch? If not, have you submitted these > to upstream stable tree?
Thanks, the following fix should also be back-ported. Considering it may take a long time to get this merged, I haven't sent this to upstream stable. > > Then upstream linux-6.6.y stable tree also has: > > commit e946428439a0d2079959f5603256ac51b6047017 > Author: Thadeu Lima de Souza Cascardo <casca...@igalia.com> > AuthorDate: Fri May 24 11:47:02 2024 -0300 > Commit: Greg Kroah-Hartman <gre...@linuxfoundation.org> > CommitDate: Fri Jun 21 14:38:40 2024 +0200 ... > > Should this be taken too? Yes, I will send v2 to include this. > > Cheers, > > -Mikko
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#14247): https://lists.yoctoproject.org/g/linux-yocto/message/14247 Mute This Topic: https://lists.yoctoproject.org/mt/107891725/21656 Group Owner: linux-yocto+ow...@lists.yoctoproject.org Unsubscribe: https://lists.yoctoproject.org/g/linux-yocto/unsub [arch...@mail-archive.com] -=-=-=-=-=-=-=-=-=-=-=-
