Searched hist:b1da6a51871c6929dced1a7fad81990988b36ed6 (Results 1 – 2 of 2) sorted by relevance
| /openbmc/linux/fs/notify/ |
| H A D | mark.c | diff b1da6a51871c6929dced1a7fad81990988b36ed6 Wed Apr 24 11:39:57 CDT 2019 Jan Kara <jack@suse.cz> fsnotify: Fix NULL ptr deref in fanotify_get_fsid()
fanotify_get_fsid() is reading mark->connector->fsid under srcu. It can
happen that it sees mark not fully initialized or mark that is already
detached from the object list. In these cases mark->connector
can be NULL leading to NULL ptr dereference. Fix the problem by
being careful when reading mark->connector and check it for being NULL.
Also use WRITE_ONCE when writing the mark just to prevent compiler from
doing something stupid.
Reported-by: syzbot+15927486a4f1bfcbaf91@syzkaller.appspotmail.com
Fixes: 77115225acc6 ("fanotify: cache fsid in fsnotify_mark_connector")
Signed-off-by: Jan Kara <jack@suse.cz>
|
| /openbmc/linux/fs/notify/fanotify/ |
| H A D | fanotify.c | diff b1da6a51871c6929dced1a7fad81990988b36ed6 Wed Apr 24 11:39:57 CDT 2019 Jan Kara <jack@suse.cz> fsnotify: Fix NULL ptr deref in fanotify_get_fsid()
fanotify_get_fsid() is reading mark->connector->fsid under srcu. It can
happen that it sees mark not fully initialized or mark that is already
detached from the object list. In these cases mark->connector
can be NULL leading to NULL ptr dereference. Fix the problem by
being careful when reading mark->connector and check it for being NULL.
Also use WRITE_ONCE when writing the mark just to prevent compiler from
doing something stupid.
Reported-by: syzbot+15927486a4f1bfcbaf91@syzkaller.appspotmail.com
Fixes: 77115225acc6 ("fanotify: cache fsid in fsnotify_mark_connector")
Signed-off-by: Jan Kara <jack@suse.cz>
|