ACK: [SRU][F][PATCH 0/1] CVE-2023-52741
Kuba Pawlak
kuba.pawlak at canonical.com
Thu Apr 10 15:21:28 UTC 2025
On 10.04.2025 15:13, Massimiliano Pellizzer wrote:
> https://ubuntu.com/security/CVE-2023-52741
>
> [ Impact ]
>
> cifs: Fix use-after-free in rdata->read_into_pages()
>
> When the network status is unstable, use-after-free may occur when
> read data from the server.
>
> Fix this by adjusts the order of condition judgment in the return
> statement of uncache_fill_pages().
>
> [ Fix ]
>
> Oracular: not affected
> Noble: not affected
> Jammy: fixed
> Focal: cherry picked from mainline
>
> [ Test Plan ]
>
> Compile tested only.
>
> [ Where Problems Could Occur ]
>
> A regression here is unlikely due to the very limited scope
> of the patch.
>
>
Acked-by: Kuba Pawlak <kuba.pawlak at canonical.com>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_0x216A9D7E3B63DCB4.asc
Type: application/pgp-keys
Size: 3139 bytes
Desc: OpenPGP public key
URL: <https://lists.ubuntu.com/archives/kernel-team/attachments/20250410/43a8199b/attachment-0001.key>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_signature.asc
Type: application/pgp-signature
Size: 840 bytes
Desc: OpenPGP digital signature
URL: <https://lists.ubuntu.com/archives/kernel-team/attachments/20250410/43a8199b/attachment-0001.sig>
More information about the kernel-team
mailing list