Kernel/linux-stable
1
0
Fork 0
mirror of https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git synced 2024-12-28 16:56:26 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
linux-5.10.y
linux-stable/drivers
History
Juergen Gross 1d5354a918 xen/netfront: fix crash when removing device 
commit f9244fb55f upstream.

When removing a netfront device directly after a suspend/resume cycle
it might happen that the queues have not been setup again, causing a
crash during the attempt to stop the queues another time.

Fix that by checking the queues are existing before trying to stop
them.

This is XSA-465 / CVE-2024-53240.

Reported-by: Marek Marczykowski-Górecki <marmarek@invisiblethingslab.com>
Fixes: d50b7914fa ("xen-netfront: Fix NULL sring after live migration")
Signed-off-by: Juergen Gross <jgross@suse.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
2024-12-19 18:06:13 +01:00
..
accessibility speakup: Fix sizeof() vs ARRAY_SIZE() bug 2024-06-16 13:31:59 +02:00
acpi ACPICA: events/evxfregn: don't release the ContextMutex that was never acquired 2024-12-19 18:06:12 +01:00
amba
android binder: fix UAF caused by offsets overwrite 2024-09-12 11:06:50 +02:00
ata ata: sata_highbank: fix OF node reference leak in highbank_initialize_phys() 2024-12-19 18:06:08 +01:00
atm atm: idt77252: prevent use after free in dequeue_rx() 2024-09-04 13:17:31 +02:00
auxdisplay
base regmap: detach regmap from dev on regmap_exit 2024-12-14 19:48:24 +01:00
bcma
block aoe: fix the potential use-after-free problem in more places 2024-10-17 15:08:23 +02:00
bluetooth Bluetooth: btusb: Add RTL8852BE device 0489:e123 to device tables 2024-12-14 19:48:29 +01:00
bus bus: integrator-lm: fix OF node leak in probe() 2024-10-17 15:08:01 +02:00
cdrom
char virtio_console: fix misc probe bugs 2024-10-17 15:08:29 +02:00
clk Revert "clkdev: remove CONFIG_CLKDEV_LOOKUP" 2024-12-19 18:06:12 +01:00
clocksource Revert "clkdev: remove CONFIG_CLKDEV_LOOKUP" 2024-12-19 18:06:12 +01:00
connector
counter counter: ti-eqep: enable clock at probe 2024-07-05 09:12:51 +02:00
cpufreq cpufreq: loongson2: Unregister platform_driver on failure 2024-12-14 19:47:58 +01:00
cpuidle
crypto crypto: cavium - Fix an error handling path in cpt_ucode_load_fw() 2024-12-14 19:47:45 +01:00
dax
dca
devfreq PM / devfreq: Fix buffer overflow in trans_stat_show 2024-05-02 16:23:44 +02:00
dio
dma dmaengine: dw: Add memory bus width verification 2024-09-04 13:17:46 +02:00
dma-buf dma-buf: fix dma_fence_array_signaled v4 2024-12-14 19:48:24 +01:00
edac EDAC/fsl_ddr: Fix bad bit shift operations 2024-12-14 19:47:45 +01:00
eisa
extcon extcon: max8997: select IRQ_DOMAIN instead of depending on it 2024-06-16 13:32:20 +02:00
firewire firewire: nosy: ensure user_length is taken into account when fetching packet contents 2024-05-17 11:48:08 +02:00
firmware firmware: arm_scpi: Check the DVFS OPP count returned by the firmware 2024-12-14 19:47:48 +01:00
fpga fpga: region: add owner module and take its refcount 2024-06-16 13:32:19 +02:00
fsi
gnss
gpio gpio: grgpio: Add NULL check in grgpio_probe 2024-12-14 19:48:20 +01:00
gpu drm/i915: Fix memory leak by correcting cache object name in error handler 2024-12-19 18:06:12 +01:00
greybus greybus: Fix use-after-free bug in gb_interface_release due to race condition. 2024-07-05 09:12:32 +02:00
hid HID: wacom: fix when get product name maybe null pointer 2024-12-14 19:48:22 +01:00
hsi
hv Drivers: hv: vmbus: Fix rescind handling in uio_hv_generic 2024-09-12 11:06:50 +02:00
hwmon hwmon: (adm9240) Add missing dependency on REGMAP_I2C 2024-10-17 15:08:37 +02:00
hwspinlock hwspinlock: Introduce hwspin_lock_bust() 2024-09-12 11:06:41 +02:00
hwtracing coresight: tmc: sg: Do not leak sg_table 2024-10-17 15:07:56 +02:00
i2c i2c: i801: Use a different adapter-name for IDF adapters 2024-10-17 15:08:31 +02:00
i3c i3c: Use i3cdev->desc->info instead of calling i3c_device_get_info() to avoid deadlock 2024-12-14 19:48:31 +01:00
ide
idle
iio ad7780: fix division by zero in ad7780_write_raw() 2024-12-14 19:48:16 +01:00
infiniband RDMA/hns: Fix NULL pointer derefernce in hns_roce_map_mr_sg() 2024-12-14 19:47:59 +01:00
input Input: synaptics-rmi4 - fix UAF of IRQ domain on driver removal 2024-10-17 15:08:29 +02:00
interconnect interconnect: qcom: sm8250: Enable sync_state 2024-10-17 15:07:57 +02:00
iommu iommu/arm-smmu: Defer probe of clients after smmu device bound 2024-12-14 19:48:25 +01:00
ipack
irqchip irqchip/gic-v3: Force propagation of the active state with a read-back 2024-11-17 14:59:38 +01:00
isdn mISDN: Fix a use after free in hfcmulti_tx() 2024-08-19 05:41:05 +02:00
leds leds: class: Protect brightness_show() with led_cdev->led_access mutex 2024-12-14 19:48:30 +01:00
lightnvm
macintosh macintosh/therm_windtunnel: fix module unload. 2024-08-19 05:40:52 +02:00
mailbox mailbox: bcm2835: Fix timeout during suspend mode 2024-10-17 15:08:06 +02:00
mcb mcb: fix error handling for different scenarios when parsing 2023-11-28 16:54:58 +00:00
md bcache: revert replacing IS_ERR_OR_NULL with IS_ERR again 2024-12-14 19:48:24 +01:00
media media: uvcvideo: Require entities to have a non-zero unique ID 2024-12-14 19:48:35 +01:00
memory memory: stm32-fmc2-ebi: check regmap_read return value 2024-09-04 13:17:36 +02:00
memstick
message scsi: fusion: Remove unused variable 'rc' 2024-12-14 19:47:59 +01:00
mfd mfd: rt5033: Fix missing regmap_del_irq_chip() 2024-12-14 19:47:58 +01:00
misc misc: eeprom: eeprom_93cx6: Add quirk for extra read clock cycle 2024-12-14 19:48:32 +01:00
mmc Revert "clkdev: remove CONFIG_CLKDEV_LOOKUP" 2024-12-19 18:06:12 +01:00
most
mtd ubi: fastmap: Fix duplicate slab cache names while attaching 2024-12-14 19:48:14 +01:00
mux
net xen/netfront: fix crash when removing device 2024-12-19 18:06:13 +01:00
nfc nfc: pn533: Add poll mod list filling check 2024-09-04 13:17:46 +02:00
ntb ntb: ntb_hw_switchtec: Fix use after free vulnerability in switchtec_ntb_remove due to race condition 2024-10-17 15:08:31 +02:00
nubus
nvdimm nvdimm: rectify the illogical code within nd_dax_probe() 2024-12-14 19:48:31 +01:00
nvme nvme-pci: fix freeing of the HMB descriptor table 2024-12-14 19:47:43 +01:00
nvmem nvmem: Fix return type of devm_nvmem_device_get() in kerneldoc 2024-09-12 11:06:50 +02:00
of of/irq: Support #msi-cells=<0> in of_msi_get_domain 2024-10-17 15:08:21 +02:00
opp OPP: debugfs: Fix warning around icc_get_name() 2024-03-26 18:21:53 -04:00
oprofile
parisc
parport parport: Proper fix for array out-of-bounds access 2024-10-22 15:39:28 +02:00
pci PCI: rockchip-ep: Fix address translation unit programming 2024-12-14 19:48:35 +01:00
pcmcia pcmcia: Use resource_size function on resource object 2024-09-12 11:06:46 +02:00
perf
phy phy: tegra: xusb: Add API to retrieve the port number of phy 2024-04-13 12:58:29 +02:00
pinctrl pinctrl: qcom-pmic-gpio: add support for PM8937 2024-12-14 19:48:31 +01:00
platform platform/chrome: cros_ec_typec: fix missing fwnode reference decrement 2024-12-14 19:48:10 +01:00
pnp PNP: ACPI: fix fortify warning 2024-02-23 08:42:03 +01:00
power power: supply: bq27xxx: Fix registers of bq27426 2024-12-14 19:48:04 +01:00
powercap powercap: RAPL: fix invalid initialization for pl4_supported field 2024-10-17 15:07:58 +02:00
pps pps: add an error check in parport_attach 2024-10-17 15:08:04 +02:00
ps3
ptp ptp: Add error handling for adjfine callback in ptp_clock_adjtime 2024-12-14 19:48:19 +01:00
pwm pwm: imx27: Workaround of the pwm output bug when decrease the duty cycle 2024-12-14 19:47:47 +01:00
rapidio
ras
regulator regulator: rk808: Add apply_bit for BUCK3 on RK809 2024-12-14 19:47:41 +01:00
remoteproc remoteproc: qcom_q6v5_mss: Re-order writes to the IMEM region 2024-12-14 19:48:03 +01:00
reset reset: berlin: fix OF node leak in probe() error path 2024-10-17 15:07:44 +02:00
rpmsg rpmsg: glink: Propagate TX failures in intentless mode as well 2024-12-14 19:48:13 +01:00
rtc rtc: ab-eoz9: don't fail temperature reads on undervoltage notification 2024-12-14 19:48:15 +01:00
s390 s390/sclp_vt220: Convert newlines to CRLF instead of LFCR 2024-10-22 15:39:25 +02:00
sbus
scsi scsi: core: Fix scsi_mode_select() buffer length handling 2024-12-14 19:48:35 +01:00
sfi
sh sh: intc: Fix use-after-free bug in register_intc_controller() 2024-12-14 19:48:16 +01:00
siox
slimbus slimbus: core: Remove usage of the deprecated ida_simple_xx() API 2024-04-13 12:58:29 +02:00
soc soc: qcom: socinfo: fix revision check in qcom_socinfo_probe() 2024-12-14 19:48:07 +01:00
soundwire soundwire: stream: Revert "soundwire: stream: fix programming slave ports for non-continous port maps" 2024-10-17 15:07:34 +02:00
spi spi: mpc52xx: Add cancel_work_sync before module remove 2024-12-14 19:48:22 +01:00
spmi
ssb ssb: Fix division by zero issue in ssb_calc_clock_rate 2024-09-04 13:17:32 +02:00
staging Revert "clkdev: remove CONFIG_CLKDEV_LOOKUP" 2024-12-19 18:06:12 +01:00
target scsi: target: core: Fix null-ptr-deref in target_alloc_device() 2024-11-08 16:21:57 +01:00
tc
tee tee: optee: Fix kernel panic caused by incorrect error handling 2024-04-13 12:58:53 +02:00
thermal
thunderbolt thunderbolt: Mark XDomain as unplugged when router is removed 2024-09-04 13:17:29 +02:00
tty serial: 8250: omap: Move pm_runtime_get_sync 2024-12-14 19:48:11 +01:00
uio Drivers: hv: vmbus: Fix rescind handling in uio_hv_generic 2024-09-12 11:06:50 +02:00
usb usb: gadget: u_serial: Fix the issue that gs_start_io crashed due to accessing null pointer 2024-12-19 18:06:09 +01:00
vdpa vdpa/mlx5: Fix suboptimal range on iotlb iteration 2024-12-14 19:48:03 +01:00
vfio vfio/pci: Properly hide first-in-list PCIe extended capability 2024-12-14 19:48:03 +01:00
vhost vhost/scsi: null-ptr-dereference in vhost_scsi_get_req() 2024-10-17 15:08:28 +02:00
video fbdev: sh7760fb: Fix a possible memory leak in sh7760fb_alloc_mem() 2024-12-14 19:48:00 +01:00
virt
virtio vdpa: Add eventfd for the vdpa callback 2024-10-17 15:07:57 +02:00
visorbus
vlynq
vme
w1
watchdog watchdog: rti: of: honor timeout-sec property 2024-12-14 19:48:22 +01:00
xen xen: Fix the issue of resource not being properly released in xenbus_dev_probe() 2024-12-14 19:48:07 +01:00
zorro
Kconfig
Makefile