retired/CVE-2023-35826


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16

Description: media: cedrus: fix use after free bug in cedrus_remove due to race condition
References:
 https://lore.kernel.org/all/a4dafa22-3ee3-dbe1-fd50-fee07883ce1a%40xs4all.nl/
 https://lore.kernel.org/linux-arm-kernel/20230308032333.1893394-1-zyytlz.wz%40163.com/T/
Notes:
 carnil> Commit fixes 7c38a551bda1 ("media: cedrus: Add watchdog for job
 carnil> completion") in 5.18-rc1.
Bugs:
upstream: released (6.4-rc1) [50d0a7aea4809cef87979d4669911276aa23b71f]
6.1-upstream-stable: released (6.1.28) [2cdc8f729d953143b3bbdc56841bb6800752de7f]
5.10-upstream-stable: N/A "Vulnerable code not present"
4.19-upstream-stable: N/A "Vulnerable code not present"
sid: released (6.3.7-1)
6.1-bookworm-security: released (6.1.37-1)
5.10-bullseye-security: N/A "Vulnerable code not present"
4.19-buster-security: N/A "Vulnerable code not present"