Description: io_uring: fix race between timeout flush and removal
References:
 https://www.openwall.com/lists/oss-security/2022/04/22/3
 https://ruia-ruia.github.io/2022/08/05/CVE-2022-29582-io-uring/
 https://github.com/Ruia-ruia/CVE-2022-29582-Exploit
Notes:
 carnil> For 5.17.y fixed as well in 5.17.3.
Bugs:
upstream: released (5.18-rc2) [e677edbcabee849bfdd43f1602bccbecf736a646]
5.10-upstream-stable: released (5.10.111) [2827328e646d0c2d3db1bfcad4b5f5016ce0d643]
4.19-upstream-stable: N/A "Vulnerable code not present"
4.9-upstream-stable: N/A "Vulnerable code not present"
sid: released (5.17.3-1)
5.10-bullseye-security: released (5.10.113-1)
4.19-buster-security: N/A "Vulnerable code not present"
4.9-stretch-security: N/A "Vulnerable code not present"