blob: 3c1b1e54f3ec1a1781c6f18b0096dd92c4736ce1 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
|
Description: cifs: Fix use-after-free in SMB2_read
References:
Notes:
carnil> Needs double check if correctly fixed in stable branches as the
carnil> CVE entry noticed that it was not correctly fixed in 5.0.10 for
carnil> instance and introduced further issue. Same issue is present as
carnil> well for the 4.19 series where the issue needed a followup in
carnil> 4.19.38.
bwh> Introduced in 4.18 by commit eccb4422cf97 "smb3: Add ftrace tracepoints
bwh> for improved SMB3 debugging".
Bugs:
upstream: released (5.1-rc6) [088aaf17aa79300cab14dbee2569c58cfafd7d6e]
4.19-upstream-stable: released (4.19.37) [c69330a855ab4342d304f67f8c1e7d1fa2686bec], released (4.19.38) [d5bf783a09a06c81ca4783054355f1d243e124e7]
4.9-upstream-stable: N/A "Vulnerable code not present"
3.16-upstream-stable: N/A "Vulnerable code not present"
sid: released (5.2.6-1)
4.19-buster-security: released (4.19.67-1)
4.9-stretch-security: N/A "Vulnerable code not present"
3.16-jessie-security: N/A "Vulnerable code not present"
|
