averello/linux-stable-mirror
1
0
Fork 0
mirror of https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git synced 2026-04-08 12:02:33 +02:00
Code Issues Packages Projects Releases Wiki Activity
1,314,880 Commits 113 Branches 5,574 Tags
3a866f8376f0a5c848dcb59cd26df845fffbe6d8
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Michal Luczaj 3a866f8376 vsock: Orphan socket after transport release 
commit 78dafe1cf3 upstream.

During socket release, sock_orphan() is called without considering that it
sets sk->sk_wq to NULL. Later, if SO_LINGER is enabled, this leads to a
null pointer dereferenced in virtio_transport_wait_close().

Orphan the socket only after transport release.

Partially reverts the 'Fixes:' commit.

KASAN: null-ptr-deref in range [0x0000000000000018-0x000000000000001f]
 lock_acquire+0x19e/0x500
 _raw_spin_lock_irqsave+0x47/0x70
 add_wait_queue+0x46/0x230
 virtio_transport_release+0x4e7/0x7f0
 __vsock_release+0xfd/0x490
 vsock_release+0x90/0x120
 __sock_release+0xa3/0x250
 sock_close+0x14/0x20
 __fput+0x35e/0xa90
 __x64_sys_close+0x78/0xd0
 do_syscall_64+0x93/0x1b0
 entry_SYSCALL_64_after_hwframe+0x76/0x7e

Reported-by: syzbot+9d55b199192a4be7d02c@syzkaller.appspotmail.com
Closes: https://syzkaller.appspot.com/bug?extid=9d55b199192a4be7d02c
Fixes: fcdd2242c0 ("vsock: Keep the binding until socket destruction")
Tested-by: Luigi Leonardi <leonardi@redhat.com>
Reviewed-by: Luigi Leonardi <leonardi@redhat.com>
Signed-off-by: Michal Luczaj <mhal@rbox.co>
Link: https://patch.msgid.link/20250210-vsock-linger-nullderef-v3-1-ef6244d02b54@rbox.co
Signed-off-by: Jakub Kicinski <kuba@kernel.org>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
2025-02-21 14:01:47 +01:00
arch
x86/static-call: Remove early_boot_irqs_disabled check to fix Xen PVH dom0
2025-02-21 14:01:46 +01:00
block
partitions: mac: fix handling of bogus partition table
2025-02-21 14:01:36 +01:00
certs
sign-file,extract-cert: use pkcs11 provider for OPENSSL MAJOR >= 3
2024-09-20 19:52:48 +03:00
crypto
crypto: api - Fix boot-up self-test race
2025-02-08 09:57:28 +01:00
Documentation
regulator: qcom_smd: Add l2, l5 sub-node to mp5496 regulator
2025-02-21 14:01:36 +01:00
drivers
scsi: ufs: core: Ensure clk_gating.lock is used only after initialization
2025-02-21 14:01:46 +01:00
fs
btrfs: fix stale page cache after race between readahead and direct IO write
2025-02-21 14:01:43 +01:00
include
net: add dev_net_rcu() helper
2025-02-21 14:01:41 +01:00
init
Compiler Attributes: disable __counted_by for clang < 19.1.3
2024-12-05 14:02:45 +01:00
io_uring
io_uring/kbuf: reallocate buf lists on upgrade
2025-02-21 14:01:47 +01:00
ipc
ipc: fix memleak if msg_init_ns failed in create_ipc_ns
2024-12-05 14:03:02 +01:00
kernel
clocksource: Use migrate_disable() to avoid calling get_random_u32() in atomic context
2025-02-21 14:01:38 +01:00
lib
maple_tree: simplify split calculation
2025-02-17 10:05:42 +01:00
LICENSES
mm
mm/compaction: fix UBSAN shift-out-of-bounds warning
2025-02-17 10:05:36 +01:00
net
vsock: Orphan socket after transport release
2025-02-21 14:01:47 +01:00
rust
rust: kbuild: add -fzero-init-padding-bits to bindgen_skip_cflags
2025-02-21 14:01:39 +01:00
samples
samples/landlock: Fix possible NULL dereference in parse_path()
2025-02-08 09:57:11 +01:00
scripts
kbuild: Use -fzero-init-padding-bits=all
2025-02-21 14:01:27 +01:00
security
KEYS: trusted: dcp: fix improper sg use with CONFIG_VMAP_STACK=y
2025-02-17 10:05:09 +01:00
sound
ASoC: Intel: bytcr_rt5640: Add DMI quirk for Vexia Edu Atla 10 tablet 5V
2025-02-21 14:01:27 +01:00
tools
selftests/bpf: Fix uprobe consumer test
2025-02-21 14:01:46 +01:00
usr
virt
KVM: x86: switch hugepage recovery thread to vhost_task
2024-12-05 14:02:43 +01:00
.clang-format
.cocciconfig
.editorconfig
.get_maintainer.ignore
.gitattributes
.gitignore
Merge tag 'kbuild-v6.12' of git://git.kernel.org/pub/scm/linux/kernel/git/masahiroy/linux-kbuild
2024-09-24 13:02:06 -07:00
.mailmap
mailmap: add entry for Thorsten Blum
2024-11-07 14:14:59 -08:00
.rustfmt.toml
COPYING
CREDITS
MAINTAINERS: Remove self from DSA entry
2024-11-03 12:52:38 -08:00
Kbuild
Kconfig
MAINTAINERS
MAINTAINERS: update location of media main tree
2024-12-05 14:02:42 +01:00
Makefile
kbuild: userprogs: fix bitsize and target detection on clang
2025-02-21 14:01:34 +01:00
README

README 

Linux kernel
============

There are several guides for kernel developers and users. These guides can
be rendered in a number of formats, like HTML and PDF. Please read
Documentation/admin-guide/README.rst first.

In order to build the documentation, use ``make htmldocs`` or
``make pdfdocs``.  The formatted documentation can also be read online at:

    https://www.kernel.org/doc/html/latest/

There are various text files in the Documentation/ subdirectory,
several of them using the reStructuredText markup notation.

Please read the Documentation/process/changes.rst file, as it contains the
requirements for building and running the kernel, and information about
the problems which may result by upgrading your kernel.
Reference in New Issue View Git Blame Copy Permalink
Description
No description provided
Readme 4.8 GiB
Languages
C 97.1%
Assembly 1%
Shell 0.6%
Rust 0.4%
Python 0.4%
Other 0.3%