APPLIED: [SRU][Focal][PATCH 0/1] CVE-2023-1611

Luke Nowakowski-Krijger luke.nowakowskikrijger at canonical.com
Thu Jul 6 19:29:02 UTC 2023


Applied to focal:linux master-next,

Thanks,
- Luke

On Mon, Jun 26, 2023 at 2:22 PM Yuxuan Luo <yuxuan.luo at canonical.com> wrote:

> [Impact]
> It was discovered that a race condition existed in the btrfs file system
> implementation in the Linux kernel, leading to a use-after-free
> vulnerability.
> A privileged local attacker could use this to cause a denial of service
> (system
> crash) or possibly expose sensitive information.
>
> [Backport]
> The conflict in qgroup.c can be ignored since their functionality are the
> same.
>
> [Test]
> Compile and smoke tested via make a btrfs loopdev and mount it.
>
> [Potential Regression]
> Expect minimal regression.
>
> Filipe Manana (1):
>   btrfs: fix race between quota disable and quota assign ioctls
>
>  fs/btrfs/ioctl.c  |  2 ++
>  fs/btrfs/qgroup.c | 11 ++++++++++-
>  2 files changed, 12 insertions(+), 1 deletion(-)
>
> --
> 2.34.1
>
>
> --
> kernel-team mailing list
> kernel-team at lists.ubuntu.com
> https://lists.ubuntu.com/mailman/listinfo/kernel-team
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.ubuntu.com/archives/kernel-team/attachments/20230706/a81609b1/attachment.html>


More information about the kernel-team mailing list