[PATCH] afs: fix UAF caused by afs_put_call
David Howells
dhowells at redhat.com
Mon Jun 22 04:51:55 EDT 2020
Guo Xuenan <guoxuenan at huawei.com> wrote:
> - call->rxcall = NULL;
> afs_put_call(call);
That won't work. It means that the call will drop too many references.
I've already pushed a fix to the net tree, though it hasn't made it upstream
yet:
https://git.kernel.org/pub/scm/linux/kernel/git/netdev/net.git/commit/?id=0041cd5a50442db6e456b145892a0eaf2dff061f
Thanks,
David
More information about the linux-afs
mailing list