| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <172489245035.551134.9407681936193800615.b4-ty@oracle.com>
Date: Wed, 28 Aug 2024 22:50:44 -0400
From: "Martin K. Petersen" <martin.petersen@...cle.com>
To: James Smart <jsmart2021@...il.com>,
Dan Carpenter <dan.carpenter@...aro.org>
Cc: "Martin K . Petersen" <martin.petersen@...cle.com>,
James Smart <james.smart@...adcom.com>,
Ram Vegesna <ram.vegesna@...adcom.com>,
"James E.J. Bottomley" <James.Bottomley@...senpartnership.com>,
Daniel Wagner <dwagner@...e.de>, linux-scsi@...r.kernel.org,
target-devel@...r.kernel.org, linux-kernel@...r.kernel.org,
kernel-janitors@...r.kernel.org
Subject: Re: [PATCH] scsi: elx: libefc: potential use after free in efc_nport_vport_del()
On Thu, 15 Aug 2024 14:29:05 +0300, Dan Carpenter wrote:
> The kref_put() function will call nport->release if the refcount drops
> to zero. The nport->release release function is _efc_nport_free() which
> frees "nport". But then we dereference "nport" on the next line which
> is a use after free. Re-order these lines to avoid the use after free.
>
>
Applied to 6.12/scsi-queue, thanks!
[1/1] scsi: elx: libefc: potential use after free in efc_nport_vport_del()
https://git.kernel.org/mkp/scsi/c/2e4b02fad094
--
Martin K. Petersen Oracle Linux Engineering
Powered by blists - more mailing lists