ACK: [SRU Focal 0/1] CVE-2022-1116
Andrea Righi
andrea.righi at canonical.com
Wed May 18 07:49:57 UTC 2022
On Wed, May 18, 2022 at 01:30:19AM -0300, Thadeu Lima de Souza Cascardo wrote:
> [Impact]
> From https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1116:
>
> Integer Overflow or Wraparound vulnerability in io_uring of Linux Kernel allows
> local attacker to cause memory corruption and escalate privileges to root. This
> issue affects: Linux Kernel versions prior to 5.4.189; version 5.4.24 and later
> versions.
>
> Pavel Begunkov (1):
> io_uring: fix fs->users overflow
>
> fs/io_uring.c | 28 ++++++++++++++++++----------
> 1 file changed, 18 insertions(+), 10 deletions(-)
Acked-by: Andrea Righi <andrea.righi at canonical.com>
More information about the kernel-team
mailing list