Re: [PATCH v2 block-6.2] block, bfq: fix uaf for bfqq in bic_set_bfqq()

From: Jens Axboe
Date: Sun Jan 29 2023 - 22:04:23 EST

Next message: Jens Axboe: "Re: [PATCH v3 0/5] A few bugfix and cleanup patches for sbitmap"
Previous message: Sherry Sun: "RE: [PATCH] tty: serial: fsl_lpuart: don't enable receiver/transmitter before rx/tx dma ready"
In reply to: Yu Kuai: "[PATCH v2 block-6.2] block, bfq: fix uaf for bfqq in bic_set_bfqq()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, 30 Jan 2023 09:41:36 +0800, Yu Kuai wrote:
> After commit 64dc8c732f5c ("block, bfq: fix possible uaf for 'bfqq->bic'"),
> bic->bfqq will be accessed in bic_set_bfqq(), however, in some context
> bic->bfqq will be freed, and bic_set_bfqq() is called with the freed
> bic->bfqq.
>
> Fix the problem by always freeing bfqq after bic_set_bfqq().
>
> [...]

Applied, thanks!

[1/1] block, bfq: fix uaf for bfqq in bic_set_bfqq()
(no commit info)

Best regards,
--
Jens Axboe

Next message: Jens Axboe: "Re: [PATCH v3 0/5] A few bugfix and cleanup patches for sbitmap"
Previous message: Sherry Sun: "RE: [PATCH] tty: serial: fsl_lpuart: don't enable receiver/transmitter before rx/tx dma ready"
In reply to: Yu Kuai: "[PATCH v2 block-6.2] block, bfq: fix uaf for bfqq in bic_set_bfqq()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]