security-research icon indicating copy to clipboard operation
security-research copied to clipboard
verified publisher icon google

Add kernelCTF CVE-2023-4244_mitigation

Open mingi opened this issue 11 months ago • 4 comments

mingi avatar Feb 10 '25 09:02 mingi

Thanks for your pull request! It looks like this may be your first contribution to a Google open source project. Before we can look at your pull request, you'll need to sign a Contributor License Agreement (CLA).

View this failed invocation of the CLA check for more information.

For the most up to date status, view the checks section at the bottom of the pull request.

google-cla[bot] avatar Feb 10 '25 09:02 google-cla[bot]

Also please sign the CLA with your other email address too. Currently the CLA check fails.

koczkatamas avatar Mar 17 '25 11:03 koczkatamas

Hi, the fix commit is incorrect. The actual commit that fixes this bug upstream is f6c383b8c31a93752a52697f8430a71dcbc46adf. When applying 5f68718b34a531a556f2f50300ead2862278da26 the exploit still works. Please update your submission.

matrizzo avatar Mar 26 '25 15:03 matrizzo

Hello,

Thank you for reviewing my PR.

I've updated the write-up base on the comments.

Please check it.

Thanks

mingi avatar Apr 05 '25 13:04 mingi

Hi, the patch commit in metadata.json is still wrong. Please update it (see https://github.com/google/security-research/pull/161#issuecomment-2754920405). Looks good otherwise.

matrizzo avatar Jun 06 '25 15:06 matrizzo

Hi, I have updated metadata.json.

mingi avatar Jun 12 '25 10:06 mingi

Thanks!

matrizzo avatar Jun 12 '25 17:06 matrizzo