projects / linux-block.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 277627b) | patch
ksmbd: fix potential use-after-free in oplock/lease break ack
authorNamjae Jeon <linkinjeon@kernel.org>
Mon, 7 Jul 2025 22:47:40 +0000 (07:47 +0900)
committerSteve French <stfrench@microsoft.com>
Tue, 8 Jul 2025 16:25:44 +0000 (11:25 -0500)
commit50f930db22365738d9387c974416f38a06e8057e
tree66e8c392ef56f4ca2a6897ae8a06d4a3143bcbb5tree
parent277627b431a0a6401635c416a21b2a0f77a77347commit | diff
ksmbd: fix potential use-after-free in oplock/lease break ack

If ksmbd_iov_pin_rsp return error, use-after-free can happen by
accessing opinfo->state and opinfo_put and ksmbd_fd_put could
called twice.

Reported-by: Ziyan Xu <research@securitygossip.com>
Signed-off-by: Namjae Jeon <linkinjeon@kernel.org>
Signed-off-by: Steve French <stfrench@microsoft.com>
fs/smb/server/smb2pdu.c diff | blob | blame | history
Linux 6.x block layer and io_uring tree(s)