| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-Id: <166596258175.7979.3302811091883290568.b4-ty@kernel.dk>
Date: Sun, 16 Oct 2022 17:23:01 -0600
From: Jens Axboe <axboe@...nel.dk>
To: ming.lei@...hat.com, Yu Kuai <yukuai1@...weicloud.com>,
john.garry@...wei.com, hare@...e.de
Cc: linux-block@...r.kernel.org, yukuai3@...wei.com,
linux-kernel@...r.kernel.org, yi.zhang@...wei.com
Subject: Re: [PATCH v2] blk-mq: fix null pointer dereference in blk_mq_clear_rq_mapping()
On Tue, 11 Oct 2022 22:22:53 +0800, Yu Kuai wrote:
> From: Yu Kuai <yukuai3@...wei.com>
>
> Our syzkaller report a null pointer dereference, root cause is
> following:
>
> __blk_mq_alloc_map_and_rqs
> set->tags[hctx_idx] = blk_mq_alloc_map_and_rqs
> blk_mq_alloc_map_and_rqs
> blk_mq_alloc_rqs
> // failed due to oom
> alloc_pages_node
> // set->tags[hctx_idx] is still NULL
> blk_mq_free_rqs
> drv_tags = set->tags[hctx_idx];
> // null pointer dereference is triggered
> blk_mq_clear_rq_mapping(drv_tags, ...)
>
> [...]
Applied, thanks!
[1/1] blk-mq: fix null pointer dereference in blk_mq_clear_rq_mapping()
commit: 76dd298094f484c6250ebd076fa53287477b2328
Best regards,
--
Jens Axboe
Powered by blists - more mailing lists