gru_handle_user_call_os functions in the file trunk/linux-3.4.x/drivers/misc/sgi-gru/grufault.c and gru_check_context_placement function in the file trunk/linux-3.4.x/drivers/misc/sgi-gru/grumain.c shares the similarity with the CVE-2022-3424, the fix is https://github.com/torvalds/linux/commit/643a16a0eb1d6ac23744bb6e90a00fc21148a9dc.
We have preliminarily verified the correctness of the above list through static analysis. Would you can help to check if this bug is true? If it's true, please try to fix it, or I'd like to open a PR for that if necessary. Thank you for your effort and patience!
Hi, Our tool have found that this repo has remained some unfixed CVE. Some of there are as follows:
anon_vma_allocfunction in the filetrunk/linux-3.4.x/mm/rmap.cshares the similarity with the CVE-2022-42703, the fix is https://github.com/torvalds/linux/commit/2555283eb40df89945557273121e9393ef9b542bsl_tx_timeoutfunction in the filetrunk/linux-3.4.x/drivers/net/slip/slip.cshares the similarity with the CVE-2022-41858, the fix is https://github.com/torvalds/linux/commit/ec4eb8a86ade4d22633e1da2a7d85a846b7d1798increment_qlen,decrement_qlenfunctions in the filetrunk/linux-3.4.x/net/sched/sch_sfb.cshares the similarity with the CVE-2022-3586, the fix is https://github.com/torvalds/linux/commit/9efd23297ccagru_handle_user_call_osfunctions in the filetrunk/linux-3.4.x/drivers/misc/sgi-gru/grufault.candgru_check_context_placementfunction in the filetrunk/linux-3.4.x/drivers/misc/sgi-gru/grumain.cshares the similarity with the CVE-2022-3424, the fix is https://github.com/torvalds/linux/commit/643a16a0eb1d6ac23744bb6e90a00fc21148a9dc.sinkfunction in the filetrunk/user/dropbear/dropbear-201X.XX/scp.cshares the similarity with the CVE-2020-36254, the fix is https://github.com/mkj/dropbear/commit/8f8a3dff705fad774a10864a2e3dbcfa9779ceffsunkbd_interrupt,sunkbd_enableandsunkbd_reinitfunctions in the file oftrunk/linux-3.4.x/drivers/input/keyboard/sunkbd.c, shares the similarity with the CVE-2020-25669, the fix is https://github.com/torvalds/linux/commit/77e70d351db7de07a46ac49b87a6c3c7a60fca7e,k_fnfunctions in the file oftrunk/linux-3.4.x/drivers/tty/vt/keyboard.c, shares the similarity with the CVE-2020-25656, the fix is https://github.com/torvalds/linux/commit/82e61c3909db51d91b9d3e2071557b6435018b80mwifiex_cmd_append_vsie_tlvfunctions in the file oftrunk/linux-3.4.x/drivers/net/wireless/mwifiex/scan.c, shares the similarity with the CVE-2020-12653, the fix is https://github.com/torvalds/linux/commit/b70261a288ea4d2f4ac7cd04be08a9f0f2de4f4dmptctl_readtestfunction and some other functions in the file oftrunk/linux-3.4.x/drivers/message/fusion/mptctl.c, shares the similarity with the CVE-2020-12652, the fix is https://github.com/torvalds/linux/commit/28d76df18f0ad5bcf5fa48510b225f0ed262a99bcit_get_packet_sizefunction and some other functions in the file oftrunk/linux-3.4.x/drivers/media/video/gspca/xirlink_cit.c, shares the similarity with the CVE-2020-11668, the fix is https://github.com/torvalds/linux/commit/a246b4d547708f33ff4d4b9a7a5dbac741dc89d8stv06xx_isoc_initfunction and some other functions in the file oftrunk/linux-3.4.x/drivers/media/video/gspca/stv06xx/stv06xx.c, shares the similarity with the CVE-2020-11609, the fix is https://github.com/torvalds/linux/commit/485b06aadb933190f4bc44e006076bc27a23f205set_fdcfunction and some other functions in the file oftrunk/linux-3.4.x/drivers/block/floppy.c, shares the similarity with the CVE-2020-9383, the fix is https://github.com/torvalds/linux/commit/2e90ca68b0d2f5548804f22f0dd61145516171e3We have preliminarily verified the correctness of the above list through static analysis. Would you can help to check if this bug is true? If it's true, please try to fix it, or I'd like to open a PR for that if necessary. Thank you for your effort and patience!