gru_handle_user_call_os functions in the file trunk/linux-3.4.x/drivers/misc/sgi-gru/grufault.c and gru_check_context_placement function in the file trunk/linux-3.4.x/drivers/misc/sgi-gru/grumain.c shares the similarity with the CVE-2022-3424, the fix is https://github.com/torvalds/linux/commit/643a16a0eb1d6ac23744bb6e90a00fc21148a9dc.
We have preliminarily verified the correctness of the above list through static analysis. Would you can help to check if this bug is true? If it's true, please try to fix it, or I'd like to open a PR for that if necessary. Thank you for your effort and patience!
Hi, Our tool have found that this repo has remained some unfixed CVE. Some of there are as follows:
anon_vma_alloc
function in the filetrunk/linux-3.4.x/mm/rmap.c
shares the similarity with the CVE-2022-42703, the fix is https://github.com/torvalds/linux/commit/2555283eb40df89945557273121e9393ef9b542bsl_tx_timeout
function in the filetrunk/linux-3.4.x/drivers/net/slip/slip.c
shares the similarity with the CVE-2022-41858, the fix is https://github.com/torvalds/linux/commit/ec4eb8a86ade4d22633e1da2a7d85a846b7d1798increment_qlen
,decrement_qlen
functions in the filetrunk/linux-3.4.x/net/sched/sch_sfb.c
shares the similarity with the CVE-2022-3586, the fix is https://github.com/torvalds/linux/commit/9efd23297ccagru_handle_user_call_os
functions in the filetrunk/linux-3.4.x/drivers/misc/sgi-gru/grufault.c
andgru_check_context_placement
function in the filetrunk/linux-3.4.x/drivers/misc/sgi-gru/grumain.c
shares the similarity with the CVE-2022-3424, the fix is https://github.com/torvalds/linux/commit/643a16a0eb1d6ac23744bb6e90a00fc21148a9dc.sink
function in the filetrunk/user/dropbear/dropbear-201X.XX/scp.c
shares the similarity with the CVE-2020-36254, the fix is https://github.com/mkj/dropbear/commit/8f8a3dff705fad774a10864a2e3dbcfa9779ceffsunkbd_interrupt
,sunkbd_enable
andsunkbd_reinit
functions in the file oftrunk/linux-3.4.x/drivers/input/keyboard/sunkbd.c
, shares the similarity with the CVE-2020-25669, the fix is https://github.com/torvalds/linux/commit/77e70d351db7de07a46ac49b87a6c3c7a60fca7e,k_fn
functions in the file oftrunk/linux-3.4.x/drivers/tty/vt/keyboard.c
, shares the similarity with the CVE-2020-25656, the fix is https://github.com/torvalds/linux/commit/82e61c3909db51d91b9d3e2071557b6435018b80mwifiex_cmd_append_vsie_tlv
functions in the file oftrunk/linux-3.4.x/drivers/net/wireless/mwifiex/scan.c
, shares the similarity with the CVE-2020-12653, the fix is https://github.com/torvalds/linux/commit/b70261a288ea4d2f4ac7cd04be08a9f0f2de4f4dmptctl_readtest
function and some other functions in the file oftrunk/linux-3.4.x/drivers/message/fusion/mptctl.c
, shares the similarity with the CVE-2020-12652, the fix is https://github.com/torvalds/linux/commit/28d76df18f0ad5bcf5fa48510b225f0ed262a99bcit_get_packet_size
function and some other functions in the file oftrunk/linux-3.4.x/drivers/media/video/gspca/xirlink_cit.c
, shares the similarity with the CVE-2020-11668, the fix is https://github.com/torvalds/linux/commit/a246b4d547708f33ff4d4b9a7a5dbac741dc89d8stv06xx_isoc_init
function and some other functions in the file oftrunk/linux-3.4.x/drivers/media/video/gspca/stv06xx/stv06xx.c
, shares the similarity with the CVE-2020-11609, the fix is https://github.com/torvalds/linux/commit/485b06aadb933190f4bc44e006076bc27a23f205set_fdc
function and some other functions in the file oftrunk/linux-3.4.x/drivers/block/floppy.c
, shares the similarity with the CVE-2020-9383, the fix is https://github.com/torvalds/linux/commit/2e90ca68b0d2f5548804f22f0dd61145516171e3We have preliminarily verified the correctness of the above list through static analysis. Would you can help to check if this bug is true? If it's true, please try to fix it, or I'd like to open a PR for that if necessary. Thank you for your effort and patience!