~ubuntu-kernel/ubuntu/+source/linux/+git/xenial:master-next

Last commit made on 2019-10-16
Get this branch:
git clone -b master-next https://git.launchpad.net/~ubuntu-kernel/ubuntu/+source/linux/+git/xenial
Members of Ubuntu Kernel Repositories can upload to this branch. Log in for directions.

Branch merges

Branch information

Recent commits

71ed183... by Tyler Hicks on 2019-10-08

UBUNTU: SAUCE: Fix posix clock speculation mitigation backport

BugLink: https://launchpad.net/bugs/1847189

The Ubuntu Xenial backport of upstream commit 19b558db12f9
("posix-timers: Protect posix clock array access against speculation")
incorrectly dropped the NULL check on the .clock_getres function
pointer. Readd the NULL check while still protecting against
side-channel speculation attacks when indexing into the posix_clocks
array to perform that NULL check.

The NULL check protects against a denial of service (system crash) or
possible arbitrary code execution that can be triggered by
clock_gettime(10, 0), as pointed out by Vitaly Nikolenko.

Fixes: eb4a3a43d161 ("posix-timers: Protect posix clock array access against speculation")
Signed-off-by: Tyler Hicks <email address hidden>
Acked-by: Colin Ian King <email address hidden>
Acked-by: Andrea Righi <email address hidden>
Signed-off-by: Kleber Sacilotto de Souza <email address hidden>

Some recent commit information could not be fetched.