summaryrefslogtreecommitdiffstats
path: root/retired/CVE-2022-20568
blob: f7b0cf75ccecb5a22785fbc9ef91ed8b2049a4ed (plain) (blame) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16

Description: io_uring: always grab file table for deferred statx
References:
 https://source.android.com/docs/security/bulletin/pixel/2022-12-01
 https://android.googlesource.com/kernel/common/+/bc80ea8a4296c4d75f7e3e27b65718cae09f20f1
Notes:
 carnil> This issues doesn't exist upstream since the native workers got
 carnil> introduced with 5.12, consider the issues as fixed with
 carnil> 5695e5161974 ("Merge tag 'io_uring-worker.v3-2021-02-25' of git://git.kernel.dk/linux-
 carnil> block").
Bugs:
upstream: released (5.12-rc1) [5695e51619745d4fe3ec2506a2f0cd982c5e27a4]
5.10-upstream-stable: released (5.10.118) [3c48558be571e01f67e65edcf03193484eeb2b79]
4.19-upstream-stable: N/A "Vulnerable code introduced later"
sid: released (5.14.6-1)
5.10-bullseye-security: released (5.10.120-1)
4.19-buster-security: N/A "Vulnerable code introduced later"

© 2014-2024 Faster IT GmbH | imprint | privacy policy