[SRU][Bionic, Focal, Jammy, Kinetic, OEM-5.17, OEM-6.0, OEM-6.1][PATCH v2 0/1] CVE-2023-1859
John Cabaj
john.cabaj at canonical.com
Tue Apr 18 13:58:25 UTC 2023
[Impact]
* A use-after-free vulnerability could exist in xen/9pfs, whereupon after removal of a xen_9pfs device, an attempt to service a response could access a struct that has been freed.
* Perform requisite clean-up upon removal so further requests cannot be serviced.
[Fix]
* Clean cherry-picks for all affected kernels
[Test Case]
* Compile tested
* Boot tested
[Potential regression]
* Low risk. Potentially could take longer to remove xen_9pfs device as cancel waits for work to finish.
-v2:
* Removing oem-5.14 and adding CVE # to patch
Zheng Wang (1):
9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race
condition
net/9p/trans_xen.c | 4 ++++
1 file changed, 4 insertions(+)
--
2.34.1
More information about the kernel-team
mailing list