| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <1457162818.19657.282.camel@haakon3.risingtidesystems.com>
Date: Fri, 04 Mar 2016 23:26:58 -0800
From: "Nicholas A. Bellinger" <nab@...ux-iscsi.org>
To: Felipe Balbi <balbi@...nel.org>
Cc: Dan Carpenter <dan.carpenter@...cle.com>,
Christoph Hellwig <hch@....de>,
Greg Kroah-Hartman <gregkh@...uxfoundation.org>,
Sebastian Andrzej Siewior <bigeasy@...utronix.de>,
Andrzej Pietrasiewicz <andrzej.p@...sung.com>,
Bart Van Assche <bart.vanassche@...disk.com>,
linux-usb@...r.kernel.org, linux-kernel@...r.kernel.org,
target-devel@...r.kernel.org
Subject: Re: [patch -target tree] usb: gadget: f_tcm: use after free
Hi Felipe + usb-gadget folks,
On Wed, 2016-03-02 at 13:55 +0200, Felipe Balbi wrote:
> Dan Carpenter <dan.carpenter@...cle.com> writes:
> > We need to move the kfree() down a line so we don't dereference a freed
> > variable.
> >
> > Fixes: 1b418a8fcbc0 ('target: Convert demo-mode only drivers to target_alloc_session')
> > Signed-off-by: Dan Carpenter <dan.carpenter@...cle.com>
>
> It's okay to take this via target:
>
> Signed-off-by: Felipe Balbi <balbi@...nel.org>
>
Note this specific patch is only a mechanical change, and we still need
reviews for the more interesting conversions:
usb-gadget/tcm: Conversion to percpu_ida tag pre-allocation
http://www.spinics.net/lists/target-devel/msg11777.html
usb-gadget/tcm: Convert to TARGET_SCF_ACK_KREF I/O krefs
http://www.spinics.net/lists/target-devel/msg11782.html
Felipe, Sebastian, & Andrezj, would you be so kind to review and test
usb-gadget using target-pending/for-next code..?
Powered by blists - more mailing lists