linux/arch/arm
Linus Torvalds e35e5b6f69 xen: security patches for v5.19
-----BEGIN PGP SIGNATURE-----
 
 iHUEABYIAB0WIQRTLbB6QfY48x44uB6AXGG7T9hjvgUCYr64gAAKCRCAXGG7T9hj
 vhx7AQChLGeEpu/4W47ielRG5c2HEg9g36LnRNZA9CyUqWPzPwD7B5LbAbY6gIM2
 8rNbFXQZVbqRTNb82IQlNWbZK5IV9gU=
 =Mee5
 -----END PGP SIGNATURE-----

Merge tag 'xsa-5.19-tag' of git://git.kernel.org/pub/scm/linux/kernel/git/xen/tip

Pull xen security fixes from Juergen Gross:

 - XSA-403 (4 patches for blkfront and netfront drivers):

   Linux Block and Network PV device frontends don't zero memory regions
   before sharing them with the backend (CVE-2022-26365,
   CVE-2022-33740). Additionally the granularity of the grant table
   doesn't allow sharing less than a 4K page, leading to unrelated data
   residing in the same 4K page as data shared with a backend being
   accessible by such backend (CVE-2022-33741, CVE-2022-33742).

 - XSA-405 (1 patch for netfront driver, only 5.10 and newer):

   While adding logic to support XDP (eXpress Data Path), a code label
   was moved in a way allowing for SKBs having references (pointers)
   retained for further processing to nevertheless be freed.

 - XSA-406 (1 patch for Arm specific dom0 code):

   When mapping pages of guests on Arm, dom0 is using an rbtree to keep
   track of the foreign mappings.

   Updating of that rbtree is not always done completely with the
   related lock held, resulting in a small race window, which can be
   used by unprivileged guests via PV devices to cause inconsistencies
   of the rbtree. These inconsistencies can lead to Denial of Service
   (DoS) of dom0, e.g. by causing crashes or the inability to perform
   further mappings of other guests' memory pages.

* tag 'xsa-5.19-tag' of git://git.kernel.org/pub/scm/linux/kernel/git/xen/tip:
  xen/arm: Fix race in RB-tree based P2M accounting
  xen-netfront: restore __skb_queue_tail() positioning in xennet_get_responses()
  xen/blkfront: force data bouncing when backend is untrusted
  xen/netfront: force data bouncing when backend is untrusted
  xen/netfront: fix leaking data in shared pages
  xen/blkfront: fix leaking data in shared pages
2022-07-05 09:18:32 -07:00
..
boot STM32 DT fixes for v5.19, round 2 2022-07-04 14:29:19 +02:00
common
configs ARM: mxs_defconfig: Enable the framebuffer 2022-06-27 15:48:16 +08:00
crypto
include arm/xen: Introduce xen_setup_dma_ops() 2022-06-06 08:54:33 +02:00
kernel This set of changes updates init and user mode helper tasks to be 2022-06-03 16:03:05 -07:00
lib
mach-actions
mach-airoha
mach-alpine
mach-artpec
mach-asm9260
mach-aspeed
mach-at91 ARM: at91: pm: Mark at91_pm_secure_init as __init 2022-06-28 12:55:32 +03:00
mach-axxia ARM: Fix refcount leak in axxia_boot_secondary 2022-06-14 12:19:13 +02:00
mach-bcm
mach-berlin
mach-clps711x
mach-cns3xxx ARM: cns3xxx: Fix refcount leak in cns3xxx_init 2022-06-24 17:18:30 +02:00
mach-davinci gpio updates for v5.19 2022-05-26 14:51:38 -07:00
mach-digicolor
mach-dove
mach-ep93xx ARM: ep93xx: Make ts72xx_register_flash() static 2022-05-27 16:00:58 +02:00
mach-exynos ARM: exynos: Fix refcount leak in exynos_map_pmu 2022-06-06 10:40:57 +02:00
mach-footbridge
mach-gemini
mach-highbank
mach-hisi ARM: ARMv4T/v5 multiplatform support for v5.19, part 1 2022-05-26 10:43:09 -07:00
mach-hpe ARM: hpe: Introduce the HPE GXP architecture 2022-05-18 14:05:53 +02:00
mach-imx
mach-iop32x ARM: ARMv4T/v5 multiplatform support for v5.19, part 1 2022-05-26 10:43:09 -07:00
mach-ixp4xx ARM: ixp4xx: Consolidate Kconfig fixing issue 2022-05-25 15:54:11 +02:00
mach-keystone
mach-lpc18xx
mach-lpc32xx
mach-mediatek
mach-meson ARM: meson: Fix refcount leak in meson_smp_prepare_cpus 2022-06-10 08:43:05 +02:00
mach-milbeaut
mach-mmp ARM: multiplatform changes, part 2 2022-06-02 15:23:54 -07:00
mach-moxart
mach-mstar
mach-mv78xx0
mach-mvebu
mach-mxs
mach-nomadik ARM: ARMv4T/v5 multiplatform support for v5.19, part 1 2022-05-26 10:43:09 -07:00
mach-npcm
mach-nspire
mach-omap1 ARM: omap1: enable multiplatform 2022-06-03 20:48:53 +02:00
mach-omap2 ARM: ARMv4T/v5 multiplatform support for v5.19, part 1 2022-05-26 10:43:09 -07:00
mach-orion5x ARM: ARMv4T/v5 multiplatform support for v5.19, part 1 2022-05-26 10:43:09 -07:00
mach-oxnas
mach-pxa ARM: multiplatform changes, part 2 2022-06-02 15:23:54 -07:00
mach-qcom
mach-rda
mach-realtek
mach-rockchip
mach-rpc
mach-s3c ARM: ARMv4T/v5 multiplatform support for v5.19, part 1 2022-05-26 10:43:09 -07:00
mach-s5pv210
mach-sa1100
mach-shmobile ARM: shmobile: rcar-gen2: Drop comma after OF match table sentinel 2022-05-05 12:32:40 +02:00
mach-socfpga
mach-spear arm: mach-spear: Add missing of_node_put() in time.c 2022-06-24 17:18:55 +02:00
mach-sti
mach-stm32
mach-sunxi ARM: ARMv4T/v5 multiplatform support for v5.19, part 1 2022-05-26 10:43:09 -07:00
mach-tegra
mach-uniphier
mach-ux500
mach-versatile ARM: ARMv4T/v5 multiplatform support for v5.19, part 1 2022-05-26 10:43:09 -07:00
mach-vt8500
mach-zynq
mm arm/xen: Introduce xen_setup_dma_ops() 2022-06-06 08:54:33 +02:00
net
nwfpe
plat-orion
probes
tools
vdso randstruct: Split randstruct Makefile and CFLAGS 2022-05-08 01:33:06 -07:00
vfp
xen xen/arm: Fix race in RB-tree based P2M accounting 2022-07-01 10:02:03 +02:00
Kbuild
Kconfig ARM: omap1: enable multiplatform 2022-06-03 20:48:53 +02:00
Kconfig-nommu
Kconfig.assembler
Kconfig.debug ARM: ARMv4T/v5 multiplatform support for v5.19, part 1 2022-05-26 10:43:09 -07:00
Makefile ARM: SoC changes, part 2 2022-06-02 15:27:44 -07:00