[trusty][PATCH 0/1] Fix for CVE-2018-5344
Benjamin M Romer
benjamin.romer at canonical.com
Wed Jan 31 16:47:58 UTC 2018
CVE-2018-5344:
In the Linux kernel through 4.14.13, drivers/block/loop.c mishandles
lo_release serialization, which allows attackers to cause a denial of
service (__lock_acquire use-after-free) or possibly have unspecified
other impact.
Linus Torvalds (1):
loop: fix concurrent lo_open/lo_release
drivers/block/loop.c | 10 ++++++++--
1 file changed, 8 insertions(+), 2 deletions(-)
--
2.7.4
More information about the kernel-team
mailing list