[SRU][F][PATCH 0/1] CVE-2024-41073
Koichiro Den
koichiro.den at canonical.com
Fri Sep 13 08:12:06 UTC 2024
[Impact]
nvme: avoid double free special payload
If a discard request needs to be retried, and that retry may fail before
a new special payload is added, a double free will result. Clear the
RQF_SPECIAL_LOAD when the request is cleaned.
[Backport]
Adjusted context due to a missing commit 3973e15fa534 ("nvme: use bvec_virt")
[Fix]
Noble: fixed via stable (pending)
Jammy: fixed via stable (pending)
Focal: Backport - adjusted contexts due to a missing commit
Bionic: fix sent to esm ML
Xenial: not affected
Trusty: not affected
[Test case]
Compile and boot tested
[Where problem could occur]
This fix affects those who use any NVMe device, an issue with this fix
would be visible to the user via unpredicted system behavior or a system
crash induced by a double free under specific conditions.
Chunguang Xu (1):
nvme: avoid double free special payload
drivers/nvme/host/core.c | 1 +
1 file changed, 1 insertion(+)
--
2.43.0
More information about the kernel-team
mailing list