APPLIED: [PATCH 0/1] [B/C] Fix for CVE-2019-12819
Khaled Elmously
khalid.elmously at canonical.com
Tue Jul 9 05:19:36 UTC 2019
On 2019-07-05 15:21:20 , Benjamin M Romer wrote:
> One-liner CVE fix, clean cherry-pick for b/c, already pending in x.
>
> Description:
> An issue was discovered in the Linux kernel before 5.0. The function
> __mdiobus_register() in drivers/net/phy/mdio_bus.c calls put_device(),
> which will trigger a fixed_mdio_bus_init use-after-free. This will cause a
> denial of service.
>
> YueHaibing (1):
> mdio_bus: Fix use-after-free on device_register fails
>
> drivers/net/phy/mdio_bus.c | 1 -
> 1 file changed, 1 deletion(-)
>
> --
> 2.20.1
>
>
> --
> kernel-team mailing list
> kernel-team at lists.ubuntu.com
> https://lists.ubuntu.com/mailman/listinfo/kernel-team
More information about the kernel-team
mailing list