mirror of
https://github.com/0xMarcio/cve.git
synced 2025-11-28 18:48:49 +00:00
1.2 KiB
1.2 KiB
CVE-2024-56764
Description
In the Linux kernel, the following vulnerability has been resolved:ublk: detach gendisk from ublk device if add_disk() failsInside ublk_abort_requests(), gendisk is grabbed for aborting allinflight requests. And ublk_abort_requests() is called when exitingthe uring context or handling timeout.If add_disk() fails, the gendisk may have been freed when callingublk_abort_requests(), so use-after-free can be caused when gettingdisk's reference in ublk_abort_requests().Fixes the bug by detaching gendisk from ublk device if add_disk() fails.
POC
Reference
No PoCs from references.