[Bug 1921902] Re: Security-Fix Xen XSA 371 for Kernel 5.4.0-71

Thu, 01 Apr 2021 09:06:01 -0700 

** Description changed:

- Today [XSA 371](http://xenbits.xen.org/xsa/advisory-371.html) was published 
which contain a security patch for a commit which is included in proposed 
5.4.0-71.
- The [Patch](http://xenbits.xen.org/xsa/xsa371-linux.patch) is only 1 line 
maybe you can add this security fix to 5.4.0-71 release.
- Thank you in advance.
+ [SRU Justification]
+ 
+ See [XSA 371](http://xenbits.xen.org/xsa/advisory-371.html). commit
+ 871997bc9e423f05c7da7c9178e62dde5df2a7f8 ("xen-blkback: fix error
+ handling in xen_blkbk_map()") introduced a security vulnerability.
  
  Original Commit:
- XSA-365: xen-blkback: fix error handling in xen_blkbk_map()
+ 871997bc9e423f05c7da7c9178e62dde5df2a7f8 ("xen-blkback: fix error handling in 
xen_blkbk_map()")
  
  New commit with security fix:
- XSA-371: xen-blkback: don't leak persistent grants from xen_blkbk_map()
+ a846738f8c3788d846ed1f587270d2f2e3d32432 ("xen-blkback: don't leak persistent 
grants from xen_blkbk_map()")
  
- See
+ [Test Plan]
+ none
+ 
+ [Where problems could occur]
+ Unkown
+ 
+ [Other Info]
  - http://xenbits.xen.org/xsa/advisory-371.html
  - http://xenbits.xen.org/xsa/xsa371-linux.patch
  - http://xenbits.xen.org/xsa/advisory-365.html
  - http://xenbits.xen.org/xsa/xsa365-linux.patch

** Description changed:

  [SRU Justification]
  
  See [XSA 371](http://xenbits.xen.org/xsa/advisory-371.html). commit
  871997bc9e423f05c7da7c9178e62dde5df2a7f8 ("xen-blkback: fix error
  handling in xen_blkbk_map()") introduced a security vulnerability.
  
  Original Commit:
  871997bc9e423f05c7da7c9178e62dde5df2a7f8 ("xen-blkback: fix error handling in 
xen_blkbk_map()")
  
  New commit with security fix:
  a846738f8c3788d846ed1f587270d2f2e3d32432 ("xen-blkback: don't leak persistent 
grants from xen_blkbk_map()")
  
  [Test Plan]
  none
  
  [Where problems could occur]
- Unkown
+ Unknown
  
  [Other Info]
  - http://xenbits.xen.org/xsa/advisory-371.html
  - http://xenbits.xen.org/xsa/xsa371-linux.patch
  - http://xenbits.xen.org/xsa/advisory-365.html
  - http://xenbits.xen.org/xsa/xsa365-linux.patch

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1921902

Title:
  Security-Fix Xen XSA 371 for Kernel 5.4.0-71

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1921902/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

Reply via email to