APPLIED: [PATCH 0/1] [B/C] Fix for CVE-2019-12819

[Khaled Elmously]

On 2019-07-05 15:21:20 , Benjamin M Romer wrote:
> One-liner CVE fix, clean cherry-pick for b/c, already pending in x.
> 
> Description:
> An issue was discovered in the Linux kernel before 5.0. The function
> __mdiobus_register() in drivers/net/phy/mdio_bus.c calls put_device(),
> which will trigger a fixed_mdio_bus_init use-after-free. This will cause a
> denial of service.
> 
> YueHaibing (1):
>   mdio_bus: Fix use-after-free on device_register fails
> 
>  drivers/net/phy/mdio_bus.c | 1 -
>  1 file changed, 1 deletion(-)
> 
> -- 
> 2.20.1
> 
> 
> -- 
> kernel-team mailing list
> kernel-team at lists.ubuntu.com
> https://lists.ubuntu.com/mailman/listinfo/kernel-team