[LTP] [PATCH v1 1/1] runtest/cve: Add some existing CVE tests to runtest file
Petr Vorel
pvorel@suse.cz
Tue Jun 20 23:08:26 CEST 2023
Hi Li, all,
...
> > +cve-2017-5669 shmat03
> This one looks like being dropped from the CVE list purposely,
> according to:
> commit 2588dafd4651706ed7ae34ae3b744b0ee8cd6384
> Author: Cyril Hrubis <chrubis@suse.cz>
> Date: Wed Aug 14 14:13:28 2019 +0200
> syscalls/shmat03: Remove it from runtest/cve
> The original POC[1] and CVE-2017-5669 are not tested by this test
> anymore as it turned out that the CVE was bogus. See:
> https://marc.info/?l=linux-mm&m=152510978123755&w=2
> And the test became regression test for:
> commit 8f89c007b6dec16a1793cb88de88fcc02117bbbc
> Author: Davidlohr Bueso <dave@stgolabs.net>
> Date: Fri May 25 14:47:30 2018 -0700
> ipc/shm: fix shmat() nil address after round-down when remapping
> Hence we will keep the test but remove it from the CVE runtest file and
Good catch, Li. I'm for merging this without "cve-2017-5669 shmat03" line.
With this change:
Reviewed-by: Petr Vorel <pvorel@suse.cz>
> adjust
> the top level comment in the test code.
Do you plan to do this?
Kind regards,
Petr
More information about the ltp
mailing list