23 Mar
2023
23 Mar
'23
4:23 p.m.
On Wed, Mar 22, 2023 at 9:36 PM Greg KH gregkh@linuxfoundation.org wrote:
On Wed, Mar 22, 2023 at 04:07:21PM -0700, Vaibhav Rustagi wrote:
Hello,
In order to resolve CVE-2023-23005 in kernel v6.1 stable tree, I would like to request cherry-picking the below commit:
mm/demotion: fix NULL vs IS_ERR checking in memory_tier_init (4a625ce)
This "fix" can never actually be hit in a real system, right?
Based on NVD, yes it is shown as "DISPUTED" based on the reasoning that it can't be realistically reached.
So it would seem that this CVE is invalid, please work to invalidate it with whatever group creates such bogus claims.
Sure, I will do so.
thanks,
greg k-h
Thanks, Vaibhav