retired/CVE-2023-1032


1
2
3
4
5
6
7
8
9
10
11
12
13
14

Description: net: avoid double iput when sock_alloc_file fails
References:
 https://www.openwall.com/lists/oss-security/2023/03/13/2
Notes:
 carnil> Commit fixes da214a475f8b ("net: add __sys_socket_file()") in
 carnil> 5.19-rc1.
Bugs:
upstream: released (6.3-rc2) [649c15c7691e9b13cbe9bf6c65c365350e056067]
6.1-upstream-stable: released (6.1.16) [7c7570791b15c3b78e3229ae97825e7eb869c7da]
5.10-upstream-stable: N/A "Vulnerable code not present"
4.19-upstream-stable: N/A "Vulnerable code not present"
sid: released (6.1.20-1)
5.10-bullseye-security: N/A "Vulnerable code not present"
4.19-buster-security: N/A "Vulnerable code not present"