[igt-dev] [Intel-gfx] [PATCH i-g-t] cve: Add checker for cve-2019-0155

Petri Latvala petri.latvala at intel.com
Fri Nov 22 09:39:42 UTC 2019


On Fri, Nov 22, 2019 at 09:20:11AM +0000, Chris Wilson wrote:
> Quoting Petri Latvala (2019-11-22 09:14:07)
> > On Thu, Nov 21, 2019 at 05:19:30PM +0200, Mika Kuoppala wrote:
> > > Add vulnerability checker for cve-2019-0155
> > > 
> > > v2: sync, bailout early if no parser (Chris)
> > > 
> > > Cc: Chris Wilson <chris at chris-wilson.co.uk>
> > > Cc: Jon Bloomfield <jon.bloomfield at intel.com>
> > > Cc: Joonas Lahtinen <joonas.lahtinen at intel.com>
> > > References: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0155
> > > References: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00242.html
> > > Signed-off-by: Mika Kuoppala <mika.kuoppala at linux.intel.com>
> > > ---
> > >  Makefile.am          |   2 +-
> > >  configure.ac         |   1 +
> > >  cve/Makefile.am      |  14 ++
> > >  cve/Makefile.sources |   5 +
> > >  cve/cve-2019-0155.c  | 470 +++++++++++++++++++++++++++++++++++++++++++
> > >  cve/meson.build      |  12 ++
> > >  meson.build          |   1 +
> > 
> > Why do we need a new source directory and new install directory for
> > this? Can't this be in tools/?
> 
> Because we would like to carve out a niche for these. If Google asks for
> a verifier for every single bug we encounter, it's going to be a huge
> directory.

Ok.

-- 
Petri Latvala


More information about the igt-dev mailing list