lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Message-ID: <CANn89i+BBuYYk1n=4HvEiZS6YhMwjdntt=psvAEAzXwcU-VKkQ@mail.gmail.com>
Date: Wed, 3 Sep 2025 03:01:54 -0700
From: Eric Dumazet <edumazet@...gle.com>
To: Bernard Pidoux <bernard.pidoux@...e.fr>, Takamitsu Iwai <takamitz@...zon.co.jp>
Cc: linux-hams@...r.kernel.org, netdev <netdev@...r.kernel.org>
Subject: Re: [BUG] [ROSE] slab-use-after-free in lock_timer_base

On Wed, Sep 3, 2025 at 2:51 AM Bernard Pidoux <bernard.pidoux@...e.fr> wrote:
>
> On 6.16.4 kernel patched with last ROSE commit for refcount use
> rose_remove_node() is causing refcount_t: underflow; use-after-free
>
> List:       linux-stable-commits
> Subject:    Patch "net: rose: split remove and free operations in
> rose_remove_neigh()" has been added to the 6.1
> From:       Sasha Levin <sashal () kernel ! org>
> Date:       2025-08-30 20:20:24
> Message-ID: 20250830202024.2485006-1-sashal () kernel ! org
>
> Bernard Pidoux
> F6BVP / AI7BG

Any particular reason you do not CC the author ?

CC Takamitsu Iwai <takamitz@...zon.co.jp>

BTW, a syzbot report was already sent to the list.

https://syzkaller.appspot.com/bug?extid=7287222a6d88bdb559a7

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ