Hi everyone,

One new issue this week:
- CVE-2021-3178 [nfsd4: readdirplus returns parent of export] - fixed
in mainline

The fix was only merged into Linus's tree a couple days ago, so we should
see the backports in a few days.

I've also added the 5.10-cip branch to the tracker.


Regards
ChenYu

Hello ChenYu san

It seems that there is a problem with merge requests to cip-kernel-sec
https://lore.kernel.org/cip-dev/0282a51a-682c-bb5e-4a68-e020ac0e76d5@codethink.co.uk/T/#u

Did you look into that?

Thanks,
Daniel

On Thu, Jan 21, 2021 at 12:15 PM Daniel Sangorrin
<daniel.sangorrin@...> wrote:

Hello ChenYu san

It seems that there is a problem with merge requests to cip-kernel-sec
https://lore.kernel.org/cip-dev/0282a51a-682c-bb5e-4a68-e020ac0e76d5@codethink.co.uk/T/#u

Did you look into that?

I tried again yesterday and the issue still persists.
SZ said he would look into it today.


ChenYu

Thanks,
Daniel

-----Original Message-----
From: cip-dev@... <cip-dev@...> On Behalf Of Chen-Yu Tsai (Moxa)
Sent: Thursday, January 21, 2021 12:51 PM
To: cip-dev@...
Cc: Pavel Machek <pavel@...>; iwamatsu nobuhiro(岩松 信洋 □ＳＷＣ◯ＡＣＴ) <nobuhiro1.iwamatsu@...>;
masashi.kudo@...
Subject: [cip-dev] Cip-kernel-sec Updates for Week of 2021-01-21

Hi everyone,

One new issue this week:
- CVE-2021-3178 [nfsd4: readdirplus returns parent of export] - fixed in mainline

The fix was only merged into Linus's tree a couple days ago, so we should see the backports in a few days.

I've also added the 5.10-cip branch to the tracker.


Regards
ChenYu

Hi,

From: Chen-Yu Tsai <wens@...>
Sent: Thursday, January 21, 2021 12:17 PM
To: cip-dev@...
Cc: Jonathan Sambrook <jonathan.sambrook@...>; SZ Lin (林上智)
<SZ.Lin@...>
Subject: Re: [cip-dev] Cip-kernel-sec Updates for Week of 2021-01-21

On Thu, Jan 21, 2021 at 12:15 PM Daniel Sangorrin
<daniel.sangorrin@...> wrote:

Hello ChenYu san

It seems that there is a problem with merge requests to cip-kernel-sec
https://apc01.safelinks.protection.outlook.com/?url=https%3A%2F%2Flore
.kernel.org%2Fcip-dev%2F0282a51a-682c-bb5e-4a68-e020ac0e76d5%40cod

ethi

nk.co.uk%2FT%2F%23u&amp;data=04%7C01%7Csz.lin%40moxa.com%7Cbf8f4
e15361

b492cc85d08d8bdc36643%7C5571c7d4286b47f69dd50aa688773c8e%7C0%7
C0%7C637

467994237789565%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAi
LCJQIjoiV2

luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&amp;sdata=CO3MQKty01
wlLP%2

FXTvVl2%2FCV1wcyx%2FvgudeEqVumgTU%3D&amp;reserved=0

Did you look into that?

I can reproduce this issue via my account, and thus I think it's not the permission issue.
The next step is to contact the gitlab administrator.

SZ

I tried again yesterday and the issue still persists.
SZ said he would look into it today.


ChenYu

Thanks,
Daniel

-----Original Message-----
From: cip-dev@... <cip-dev@...>
On Behalf Of Chen-Yu Tsai (Moxa)
Sent: Thursday, January 21, 2021 12:51 PM
To: cip-dev@...
Cc: Pavel Machek <pavel@...>; iwamatsu nobuhiro(岩松 信洋 □Ｓ

ＷＣ◯ＡＣＴ)

<nobuhiro1.iwamatsu@...>;
masashi.kudo@...
Subject: [cip-dev] Cip-kernel-sec Updates for Week of 2021-01-21

Hi everyone,

One new issue this week:
- CVE-2021-3178 [nfsd4: readdirplus returns parent of export] -
fixed in mainline

The fix was only merged into Linus's tree a couple days ago, so we should

see the backports in a few days.

I've also added the 5.10-cip branch to the tracker.


Regards
ChenYu