ACK: [SRU][F/J/K/L][PATCH 0/1] CVE-2023-3141
Roxana Nicolescu
roxana.nicolescu at canonical.com
Wed Jun 28 07:44:13 UTC 2023
On 26/06/2023 18:13, Yuxuan Luo wrote:
> [Impact]
> It is found that memstick/r592 driver is likely to be vulnerable to a
> use-after-free flaw at driver removal, leading to potential kernel integrity
> damage.
>
> [Backport]
> Clean cherry pick.
>
> [Test]
> Compile and smoke tested.
>
> [Potential Regression]
> Expect minimal regression.
>
> Zheng Wang (1):
> memstick: r592: Fix UAF bug in r592_remove due to race condition
>
> drivers/memstick/host/r592.c | 2 +-
> 1 file changed, 1 insertion(+), 1 deletion(-)
>
Acked-by: Roxana Nicolescu <roxana.nicolescu at canonical.com>
More information about the kernel-team
mailing list