mirror of
https://github.com/0xMarcio/cve.git
synced 2025-11-28 18:48:49 +00:00
1.0 KiB
1.0 KiB
CVE-2024-47750
Description
In the Linux kernel, the following vulnerability has been resolved:RDMA/hns: Fix Use-After-Free of rsv_qp on HIP08Currently rsv_qp is freed before ib_unregister_device() is calledon HIP08. During the time interval, users can still dereg MR andrsv_qp will be used in this process, leading to a UAF. Move therelease of rsv_qp after calling ib_unregister_device() to fix it.
POC
Reference
No PoCs from references.