mirrors
/
linux-stable
mirror of https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
1
0
Fork 0
Code Issues Releases Wiki Activity
linux-stable/drivers/staging
History
YueHaibing cf7d89e809 staging: rtl8192e: Fix potential use-after-free in rtllib_rx_Monitor() 
[ Upstream commit d30f4436f3 ]

The skb is delivered to netif_rx() in rtllib_monitor_rx(), which may free it,
after calling this, dereferencing skb may trigger use-after-free.
Found by Smatch.

Fixes: 94a799425e ("From: wlanfae <wlanfae@realtek.com> [PATCH 1/8] rtl8192e: Import new version of driver from realtek")
Signed-off-by: YueHaibing <yuehaibing@huawei.com>
Link: https://lore.kernel.org/r/20221123081253.22296-1-yuehaibing@huawei.com
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
Signed-off-by: Sasha Levin <sashal@kernel.org>
 		2023-01-07 12:07:26 +01:00
..
android ion: Make user_ion_handle_put_nolock() a void function 2022-08-25 11:09:21 +02:00
board staging: board: Fix uninitialized spinlock when attaching genpd 2021-09-22 11:43:05 +02:00
clocking-wizard
comedi comedi: vmk80xx: fix expression for tx buffer size 2022-06-25 11:45:18 +02:00
dgnc
emxx_udc staging: emxx_udc: fix loop in _nbu2ss_nuke() 2021-06-03 08:23:32 +02:00
fbtft staging: fbtft: fb_st7789v: reset display before initialization 2022-03-28 08:06:05 +02:00
fsl-mc bus/fsl_mc: Do not rely on caller to provide non NULL mc_io 2020-11-10 10:23:54 +01:00
fwserial staging: fwserial: Fix error handling in fwserial_create 2021-03-07 11:25:57 +01:00
gdm724x staging: gdm724x: fix use after free in gdm_lte_rx() 2022-03-16 12:49:01 +01:00
goldfish
greybus staging: greybus: codecs: fix type confusion of list iterator variable 2022-06-14 16:52:37 +02:00
gs_fpgaboot
i4l
iio staging: iio: cdc: ad7746: avoid overwrite of num_channels 2021-06-03 08:23:29 +02:00
ks7010 staging: ks7010: Fix the initialization of the 'sleep_status' structure 2021-09-22 11:43:06 +02:00
lustre
media media: s5p_cec: limit msg.len to CEC_MAX_MSG_SIZE 2022-11-10 15:46:06 +01:00
most staging: most: sound: add sanity check for function argument 2021-03-07 11:25:58 +01:00
mt29f_spinand
netlogic
nvec
octeon staging: octeon: Drop on uncorrectable alignment or FCS error 2020-11-10 10:24:01 +01:00
octeon-usb
olpc_dcon
rtl8188eu staging: rtl8188eu: fix potential memory corruption in rtw_check_beacon_data() 2021-03-17 16:10:16 +01:00
rtl8192e staging: rtl8192e: Fix potential use-after-free in rtllib_rx_Monitor() 2023-01-07 12:07:26 +01:00
rtl8192u staging: rtl8192u: Fix use after free in ieee80211_rx() 2023-01-07 12:07:26 +01:00
rtl8712 staging: rtl8712: fix use after free bugs 2022-09-15 12:39:44 +02:00
rts5208
skein
slicoss
sm750fb staging: sm750fb: add missing case while setting FB_VISUAL 2020-06-30 15:38:23 -04:00
speakup speakup: fix uninitialized flush_lock 2020-12-29 13:44:59 +01:00
unisys
vc04_services
vme
vt6655
vt6656
wilc1000
wlan-ng staging: wlan-ng: Avoid bitwise vs logical OR warning in hfa384x_usb_throttlefn() 2022-01-27 08:47:31 +01:00
xgifb
Kconfig
Makefile