Cip-kernel-sec Updates for Week of 2021-01-28


Chen-Yu Tsai <wens213@...>
 

Hi everyone,

One new issue this week:
- CVE-2020-35513 [nfsd: incorrect umask] - fixed in all branches

In addition, the fix for CVE-2021-3178 was backported to all stable kernels.
The security concerns for this issue are being disputed though.

Also, information for CVE-2020-27066 still hasn't been disclosed, and
the affected commit is still unclear.

Last, for CVE-2020-27825 the Fixes tag was incorrect; it is actually a
Depends-On [1].
The issue is known to affect at least in 4.14, 4.19 and 5.4. A sample
backport for 4.4+ [2]
was posted, but a proper backport is still pending [3].


Regards
ChenYu

[1] https://lore.kernel.org/linux-arm-msm/20200915141304.41fa7c30@gandalf.local.home/
[2] https://lore.kernel.org/stable/021b1b38-47ce-bc8b-3867-99160cc85523@linux.com/
[3] https://lore.kernel.org/stable/YA1GU+xjL+zUDIjN@kroah.com/
* All from the same mail thread

Join cip-dev@lists.cip-project.org to automatically receive all group messages.