| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20251225151808.lvpfdwqvcej4vxgm@inspiron> Date: Thu, 25 Dec 2025 20:48:08 +0530 From: Prithvi <activprithvi@...il.com> To: Jens Axboe <axboe@...nel.dk> Cc: io-uring@...r.kernel.org, brauner@...nel.org, jack@...e.cz, viro@...iv.linux.org.uk, linux-fsdevel@...r.kernel.org, linux-kernel@...r.kernel.org, linux-kernel-mentees@...ts.linux.dev, skhan@...uxfoundation.org, david.hunter.linux@...il.com, khalid@...nel.org, syzbot+00e61c43eb5e4740438f@...kaller.appspotmail.com, stable@...r.kernel.org Subject: Re: [PATCH v2] io_uring: fix filename leak in __io_openat_prep() On Thu, Dec 25, 2025 at 08:08:50AM -0700, Jens Axboe wrote: > > On Thu, 25 Dec 2025 12:58:29 +0530, Prithvi Tambewagh wrote: > > __io_openat_prep() allocates a struct filename using getname(). However, > > for the condition of the file being installed in the fixed file table as > > well as having O_CLOEXEC flag set, the function returns early. At that > > point, the request doesn't have REQ_F_NEED_CLEANUP flag set. Due to this, > > the memory for the newly allocated struct filename is not cleaned up, > > causing a memory leak. > > > > [...] > > Applied, thanks! > > [1/1] io_uring: fix filename leak in __io_openat_prep() > commit: b14fad555302a2104948feaff70503b64c80ac01 > > Best regards, > -- > Jens Axboe > > > Thank you! Best Regards, Prithvi
Powered by blists - more mailing lists