Description: cifs: Fix use-after-free in SMB2_read
References:
Notes:
 carnil> Needs double check if correctly fixed in stable branches as the
 carnil> CVE entry noticed that it was not correctly fixed in 5.0.10 for
 carnil> instance and introduced further issue. Same issue is present as
 carnil> well for the 4.19 series where the issue needed a followup in
 carnil> 4.19.38.
 bwh> Introduced in 4.18 by commit eccb4422cf97 "smb3: Add ftrace tracepoints
 bwh> for improved SMB3 debugging".
Bugs:
upstream: released (5.1-rc6) [088aaf17aa79300cab14dbee2569c58cfafd7d6e]
4.19-upstream-stable: released (4.19.37) [c69330a855ab4342d304f67f8c1e7d1fa2686bec], released (4.19.38) [d5bf783a09a06c81ca4783054355f1d243e124e7]
4.9-upstream-stable: N/A "Vulnerable code not present"
3.16-upstream-stable: N/A "Vulnerable code not present"
sid: released (5.2.6-1)
4.19-buster-security: released (4.19.67-1)
4.9-stretch-security: N/A "Vulnerable code not present"
3.16-jessie-security: N/A "Vulnerable code not present"