mirror of
https://github.com/0xMarcio/cve.git
synced 2025-11-30 18:56:19 +00:00
1.3 KiB
1.3 KiB
CVE-2024-49855
Description
In the Linux kernel, the following vulnerability has been resolved:nbd: fix race between timeout and normal completionIf request timetout is handled by nbd_requeue_cmd(), normal completionhas to be stopped for avoiding to complete this requeued request, otheruse-after-free can be triggered.Fix the race by clearing NBD_CMD_INFLIGHT in nbd_requeue_cmd(), meantimemake sure that cmd->lock is grabbed for clearing the flag and therequeue.
POC
Reference
No PoCs from references.