]> git.ipfire.org Git - thirdparty/kernel/stable.git/commit
projects / thirdparty / kernel / stable.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 2d89dab) | patch
ksmbd: fix potential use-after-free in oplock/lease break ack
authorNamjae Jeon <linkinjeon@kernel.org>
Mon, 7 Jul 2025 22:47:40 +0000 (07:47 +0900)
committerGreg Kroah-Hartman <gregkh@linuxfoundation.org>
Thu, 17 Jul 2025 16:37:24 +0000 (18:37 +0200)
commit815f1161d6dbc4c54ccf94b7d3fdeab34b4d7477
treeac97c3f9895080f0f6f9db7bb34abcb12846bebetree | snapshot
parent2d89dab1ea6086e6cbe6fe92531b496fb6808cb9commit | diff
ksmbd: fix potential use-after-free in oplock/lease break ack

commit 50f930db22365738d9387c974416f38a06e8057e upstream.

If ksmbd_iov_pin_rsp return error, use-after-free can happen by
accessing opinfo->state and opinfo_put and ksmbd_fd_put could
called twice.

Reported-by: Ziyan Xu <research@securitygossip.com>
Signed-off-by: Namjae Jeon <linkinjeon@kernel.org>
Signed-off-by: Steve French <stfrench@microsoft.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
fs/smb/server/smb2pdu.c diff | blob | blame | history
Mirror https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git