| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-Id:
<176883064677.1419958.15115865034651314152.git-patchwork-notify@kernel.org>
Date: Mon, 19 Jan 2026 13:50:46 +0000
From: patchwork-bot+f2fs@...nel.org
To: Chao Yu <chao@...nel.org>
Cc: jaegeuk@...nel.org, syzbot+b4444e3c972a7a124187@...kaller.appspotmail.com,
stable@...nel.org, linux-kernel@...r.kernel.org,
linux-f2fs-devel@...ts.sourceforge.net
Subject: Re: [f2fs-dev] [PATCH] f2fs: fix to avoid UAF in f2fs_write_end_io()
Hello:
This patch was applied to jaegeuk/f2fs.git (dev)
by Jaegeuk Kim <jaegeuk@...nel.org>:
On Wed, 7 Jan 2026 19:22:18 +0800 you wrote:
> As syzbot reported an use-after-free issue in f2fs_write_end_io().
>
> It is caused by below race condition:
>
> loop device umount
> - worker_thread
> - loop_process_work
> - do_req_filebacked
> - lo_rw_aio
> - lo_rw_aio_complete
> - blk_mq_end_request
> - blk_update_request
> - f2fs_write_end_io
> - dec_page_count
> - folio_end_writeback
> - kill_f2fs_super
> - kill_block_super
> - f2fs_put_super
> : free(sbi)
> : get_pages(, F2FS_WB_CP_DATA)
> accessed sbi which is freed
>
> [...]
Here is the summary with links:
- [f2fs-dev] f2fs: fix to avoid UAF in f2fs_write_end_io()
https://git.kernel.org/jaegeuk/f2fs/c/ce2739e482bc
You are awesome, thank you!
--
Deet-doot-dot, I am a bot.
https://korg.docs.kernel.org/patchwork/pwbot.html
Powered by blists - more mailing lists