[SRU HWE-5.17 1/1] net: rose: fix UAF bugs caused by timer handler
Cengiz Can
cengiz.can at canonical.com
Wed Sep 28 17:11:33 UTC 2022
On Wed, 2022-09-28 at 11:54 -0300, Thadeu Lima de Souza Cascardo wrote:
> I wonder if we need 148ca04518070910739dfc4eeda765057856403d ("net: rose:
> fix UAF bug caused by rose_t0timer_expiry") as well or if this just
> warrants yet another CVE.
>From what I see, it looks like a separate CVE.
Doesn't seem to have an ID assigned yet.
>
> Can you open a bug and make sure that one is included everywhere?
>
> Cascardo.
More information about the kernel-team
mailing list