On Sat, Jun 21, 2025 at 11:30:36PM +0530, Harshit Mogalapalli wrote:
Hi stable maintainers,
On 15/06/25 20:54, Harshit Mogalapalli wrote:
commit: 10685681bafc ("net_sched: sch_sfq: don't allow 1 packet limit") fixes CVE-2024-57996 and commit: b3bf8f63e617 ("net_sched: sch_sfq: move the limit validation") fixes CVE-2025-37752.
Ping on this patch series: 5.15.y: https://lore.kernel.org/all/20250615152427.1364822-1-harshit.m.mogalapalli@o...
- [1]
5.10.y: https://lore.kernel.org/all/20250615175153.1610731-1-harshit.m.mogalapalli@o...
But looks like Eric sent these 5 recently as a part of a 7 patch series to 5.15.y here: https://lore.kernel.org/all/20250620154623.331294-1-edumazet@google.com/
Just to avoid any confusion adding context here. I feel like Eric's patch series is better as it includes two more new fixes than my series while the first 5 backports are exactly same.
I'll take Eric's patches. Should we also drop your 5.10 series or go with them for that tree instead?
thanks,
greg k-h