| Message ID | 20230807210531.51908-1-yuxuan.luo@canonical.com |
|---|---|
| Headers | show |
| Series | CVE-2023-3141 | expand |
On Mon, Aug 07, 2023 at 05:05:30PM -0400, Yuxuan Luo wrote: > [Impact] > It is found that memstick/r592 driver is likely to be vulnerable to a > use-after-free flaw at driver removal, leading to potential kernel integrity > damage. > > [Backport] > Clean cherry pick. > > [Test] > Compile and smoke tested. > > [Potential Regression] > Expect minimal regression. > > Zheng Wang (1): > memstick: r592: Fix UAF bug in r592_remove due to race condition > > drivers/memstick/host/r592.c | 2 +- > 1 file changed, 1 insertion(+), 1 deletion(-) > > -- > 2.34.1 Was this meant to be to oem-5.17 and oem-6.0? Cascardo.
This is meant to be OEM patches, wrong subject. Will send a v2 soon. On 8/8/23 05:36, Thadeu Lima de Souza Cascardo wrote: > On Mon, Aug 07, 2023 at 05:05:30PM -0400, Yuxuan Luo wrote: >> [Impact] >> It is found that memstick/r592 driver is likely to be vulnerable to a >> use-after-free flaw at driver removal, leading to potential kernel integrity >> damage. >> >> [Backport] >> Clean cherry pick. >> >> [Test] >> Compile and smoke tested. >> >> [Potential Regression] >> Expect minimal regression. >> >> Zheng Wang (1): >> memstick: r592: Fix UAF bug in r592_remove due to race condition >> >> drivers/memstick/host/r592.c | 2 +- >> 1 file changed, 1 insertion(+), 1 deletion(-) >> >> -- >> 2.34.1 > Was this meant to be to oem-5.17 and oem-6.0? > > Cascardo.