git.maquefel.me Git - linux.git/commit

author	Namjae Jeon <linkinjeon@kernel.org>
	Sat, 13 Jan 2024 06:30:07 +0000 (15:30 +0900)
committer	Steve French <stfrench@microsoft.com>
	Sun, 14 Jan 2024 17:39:49 +0000 (11:39 -0600)
commit	38d20c62903d669693a1869aa68c4dd5674e2544
tree	8d19ec9f1163a00975306e5acbe7e2a4298deec9	tree \| snapshot
parent	92e470163d96df8db6c4fa0f484e4a229edb903d	commit \| diff

ksmbd: fix UAF issue in ksmbd_tcp_new_connection()

The race is between the handling of a new TCP connection and
its disconnection. It leads to UAF on `struct tcp_transport` in
ksmbd_tcp_new_connection() function.

Cc: stable@vger.kernel.org
Reported-by: zdi-disclosures@trendmicro.com # ZDI-CAN-22991
Signed-off-by: Namjae Jeon <linkinjeon@kernel.org>
Signed-off-by: Steve French <stfrench@microsoft.com>

fs/smb/server/connection.c		diff \| blob \| history
fs/smb/server/connection.h		diff \| blob \| history
fs/smb/server/transport_rdma.c		diff \| blob \| history
fs/smb/server/transport_tcp.c		diff \| blob \| history

ep93xx device tree rework repo: git://git.maquefel.me/linux.git

RSS Atom