| Message ID | 20230907223726.54322-1-yuxuan.luo@canonical.com |
|---|---|
| Headers | show |
| Series | CVE-2023-4132 | expand |
On 9/7/23 4:37 PM, Yuxuan Luo wrote: > [Impact] > A use-after-free vulnerability was found in the siano smsusb module in > the Linux kernel. The bug occurs during device initialization when the > siano device is plugged in. This flaw allows a local user to crash the > system, causing a denial of service condition. > > [Backport] > Clean cherry pick. > > [Test] > Compile and boot tested. > > [Potential Regression] > Expect minimal regression potential. > > Duoming Zhou (1): > media: usb: siano: Fix warning due to null work_func_t function > pointer > > drivers/media/usb/siano/smsusb.c | 3 ++- > 1 file changed, 2 insertions(+), 1 deletion(-) > Acked-by: Tim Gardner <tim.gardner@canonical.com>
On 08.09.23 00:37, Yuxuan Luo wrote: > [Impact] > A use-after-free vulnerability was found in the siano smsusb module in > the Linux kernel. The bug occurs during device initialization when the > siano device is plugged in. This flaw allows a local user to crash the > system, causing a denial of service condition. > > [Backport] > Clean cherry pick. > > [Test] > Compile and boot tested. > > [Potential Regression] > Expect minimal regression potential. > > Duoming Zhou (1): > media: usb: siano: Fix warning due to null work_func_t function > pointer > > drivers/media/usb/siano/smsusb.c | 3 ++- > 1 file changed, 2 insertions(+), 1 deletion(-) > Acked-by: Stefan Bader <stefan.bader@canonical.com>
On 08.09.23 00:37, Yuxuan Luo wrote: > [Impact] > A use-after-free vulnerability was found in the siano smsusb module in > the Linux kernel. The bug occurs during device initialization when the > siano device is plugged in. This flaw allows a local user to crash the > system, causing a denial of service condition. > > [Backport] > Clean cherry pick. > > [Test] > Compile and boot tested. > > [Potential Regression] > Expect minimal regression potential. > > Duoming Zhou (1): > media: usb: siano: Fix warning due to null work_func_t function > pointer > > drivers/media/usb/siano/smsusb.c | 3 ++- > 1 file changed, 2 insertions(+), 1 deletion(-) > Applied to lunar,focal:linux/master-next (jammy already has it). Thanks. -Stefan
[Impact] A use-after-free vulnerability was found in the siano smsusb module in the Linux kernel. The bug occurs during device initialization when the siano device is plugged in. This flaw allows a local user to crash the system, causing a denial of service condition. [Backport] Clean cherry pick. [Test] Compile and boot tested. [Potential Regression] Expect minimal regression potential. Duoming Zhou (1): media: usb: siano: Fix warning due to null work_func_t function pointer drivers/media/usb/siano/smsusb.c | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-)