Skip to content

[GHSA-592q-r679-2jpc] In the Linux kernel, the following vulnerability has been... #6280

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
Ankush-Pathak wants to merge 1 commit into from
Closed

[GHSA-592q-r679-2jpc] In the Linux kernel, the following vulnerability has been... #6280

Ankush-Pathak wants to merge 1 commit into from

Conversation

@Ankush-Pathak
Copy link

@Ankush-Pathak Ankush-Pathak commented Oct 6, 2025

Updates

  • Affected products
  • Description
  • References
  • Summary

Comments
Currently the advisory indicates that this vulnerability has been fixed. However, the fix was reverted after being NACKed by Phillip Lougher.
Please see https://lore.kernel.org/all/[email protected]/T/#u and
https://git.kernel.org/stable/c/a5b21d8d791cd4db609d0bbcaa9e0c7e019888d1.
I have added a random ecosystem(Composer) as I couldn't submit the improvement without selecting one.

@github-actions github-actions bot changed the base branch from main to Ankush-Pathak/advisory-improvement-6280 October 6, 2025 12:36
@Ankush-Pathak Ankush-Pathak marked this pull request as draft October 6, 2025 12:37
@Ankush-Pathak Ankush-Pathak marked this pull request as ready for review October 6, 2025 13:46
@Ankush-Pathak
Copy link
Author

Ankush-Pathak commented Oct 6, 2025

Could someone with write access remove the affected block?

  "affected": [
    {
      "package": {
        "ecosystem": "Packagist",
        "name": ""
      },
      "ranges": [
        {
          "type": "ECOSYSTEM",
          "events": [
            {
              "introduced": "0"
            }
          ]
        }
      ]
    }
  ],

@JonathanLEvans
Copy link

JonathanLEvans commented Oct 6, 2025

Hi @Ankush-Pathak,

Thank you for your contribution. Unfortunately, the Linux kernel is not in a supported ecosystem so we cannot review this advisory. However, you can contact the assigning CNA (kernel.org) at [email protected] to get the CVE updated.

Let me know if there is anything else I can help with.

@github-actions github-actions bot deleted the Ankush-Pathak-GHSA-592q-r679-2jpc branch October 6, 2025 16:29
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@Ankush-Pathak @JonathanLEvans