[SRU][F/J/K/L][PATCH 0/1] CVE-2023-3141
Thadeu Lima de Souza Cascardo
cascardo at canonical.com
Tue Aug 8 09:36:39 UTC 2023
On Mon, Aug 07, 2023 at 05:05:30PM -0400, Yuxuan Luo wrote:
> [Impact]
> It is found that memstick/r592 driver is likely to be vulnerable to a
> use-after-free flaw at driver removal, leading to potential kernel integrity
> damage.
>
> [Backport]
> Clean cherry pick.
>
> [Test]
> Compile and smoke tested.
>
> [Potential Regression]
> Expect minimal regression.
>
> Zheng Wang (1):
> memstick: r592: Fix UAF bug in r592_remove due to race condition
>
> drivers/memstick/host/r592.c | 2 +-
> 1 file changed, 1 insertion(+), 1 deletion(-)
>
> --
> 2.34.1
Was this meant to be to oem-5.17 and oem-6.0?
Cascardo.
More information about the kernel-team
mailing list