ACK: [SRU][F][PATCH 0/1] CVE-2024-41073
Cengiz Can
cengiz.can at canonical.com
Sun Sep 15 03:37:05 UTC 2024
On 13-09-24 17:12:06, Koichiro Den wrote:
> [Impact]
>
> nvme: avoid double free special payload
>
> If a discard request needs to be retried, and that retry may fail before
> a new special payload is added, a double free will result. Clear the
> RQF_SPECIAL_LOAD when the request is cleaned.
>
> [Backport]
>
> Adjusted context due to a missing commit 3973e15fa534 ("nvme: use bvec_virt")
>
> [Fix]
>
> Noble: fixed via stable (pending)
> Jammy: fixed via stable (pending)
> Focal: Backport - adjusted contexts due to a missing commit
> Bionic: fix sent to esm ML
> Xenial: not affected
> Trusty: not affected
>
> [Test case]
>
> Compile and boot tested
>
> [Where problem could occur]
>
> This fix affects those who use any NVMe device, an issue with this fix
> would be visible to the user via unpredicted system behavior or a system
> crash induced by a double free under specific conditions.
>
>
> Chunguang Xu (1):
> nvme: avoid double free special payload
Acked-by: Cengiz Can <cengiz.can at canonical.com>
>
> drivers/nvme/host/core.c | 1 +
> 1 file changed, 1 insertion(+)
>
> --
> 2.43.0
>
>
> --
> kernel-team mailing list
> kernel-team at lists.ubuntu.com
> https://lists.ubuntu.com/mailman/listinfo/kernel-team
More information about the kernel-team
mailing list