Entreprise française de cybersécurité depuis 2004
☎ 03 60 47 09 81 - info@securiteinfo.com
☎ 03 60 47 09 81 - info@securiteinfo.com
In the Linux kernel, the following vulnerability has been resolved:nbd: fix race between timeout and normal completionIf request timetout is handled by nbd_requeue_cmd(), normal completionhas to be stopped for avoiding to complete this requeued request, otheruse-after-free can be triggered.Fix the race by clearing NBD_CMD_INFLIGHT in nbd_requeue_cmd(), meantimemake sure that cmd->lock is grabbed for clearing the flag and therequeue.
No PoCs from references.
- https://github.com/fkie-cad/nvd-json-data-feeds