| Message ID | 20230126133613.815127-1-pchelkin@ispras.ru |
|---|---|
| Headers |
Return-Path: <linux-kernel-owner@vger.kernel.org>
Delivered-To: ouuuleilei@gmail.com
Received: by 2002:adf:eb09:0:0:0:0:0 with SMTP id s9csp276576wrn;
Thu, 26 Jan 2023 05:45:39 -0800 (PST)
X-Google-Smtp-Source:
AMrXdXs3jqXBbPVHSWDLxqdx6/sVyUCSGIrggCVpuMEOr+UNu+rBvOVfETdzM/01Y/6H7or3VHx9
X-Received: by 2002:a05:6a00:181f:b0:58b:d244:b525 with SMTP id
y31-20020a056a00181f00b0058bd244b525mr51374929pfa.17.1674740738890;
Thu, 26 Jan 2023 05:45:38 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; t=1674740738; cv=none;
d=google.com; s=arc-20160816;
b=gQo8fQfQghf3liwKGINDxMkFtnCYN7DtUlB4PUgIThHX2zTXeVFg8zKXut9iLygYtP
XeC/TZ6fFVQDiJQSjNmL7rTyhmWXWljOEYE8K+eRLCdVlbvaE8hoYU7afPWGYspTB/ed
phPNSrfvg5op9EenjBGAVxOAaaXknir9gwOKLTNaghhaR7fPZSY3rYW9VDhgaYjvKUyN
abTvjoL/VZ0IX3bPwwzLzT1DmpfUA54oOnX9HXbxz1TMBYX0kIFY6Z9norY0z7Tv4RGC
QETsKlfD8UxC4lOHEn/IgRsSv7eZ2ljqC1pYDmCSf+SLWpA9LoMB5g07Ek/8CawdpbkO
Yzkg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com;
s=arc-20160816;
h=list-id:precedence:content-transfer-encoding:mime-version
:message-id:date:subject:cc:to:from:dkim-signature:dkim-filter;
bh=0b43UeQLqG/CbFnOsMwNF1eMzXNA9GcQsvNOir8rjrQ=;
b=gxw+lyyu+xS/iMjKMNqm7L/gc/zXYUyJxr8EKBtMvF++kPQWcLxlnuJC+aHVrAmmaW
TxXWHXTAQPG3l2ZhF492TWa7cd4Adwse1+pJ+21tRFdhIhW8+08MqyGhuOfhWQXoK5EG
8LNq+tHyP9pzgwVGkS+bRYonWlSDA5CnAPA7zBsSMkvUKFlkqNXgzU/8cVG9NqqvbVsM
rRL+YhBXzafZU/oWPaBwl1OkJKH0ztqgps80vnysEjtN5WzQZ4AQf4pCZ+zjeqW/U5QB
GGtSuZXaRrHWn0tISBzf1dvpcbr+CxBHFAr2jZEL8vxGrw5mFhKPQuCGOryHhRrPk/T0
sW+w==
ARC-Authentication-Results: i=1; mx.google.com;
dkim=pass header.i=@ispras.ru header.s=default header.b=hXpJvfU9;
spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org
designates 2620:137:e000::1:20 as permitted sender)
smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=ispras.ru
Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20])
by mx.google.com with ESMTP id
bt23-20020a056a00439700b0058dbe627fc2si1179382pfb.336.2023.01.26.05.45.25;
Thu, 26 Jan 2023 05:45:38 -0800 (PST)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org
designates 2620:137:e000::1:20 as permitted sender)
client-ip=2620:137:e000::1:20;
Authentication-Results: mx.google.com;
dkim=pass header.i=@ispras.ru header.s=default header.b=hXpJvfU9;
spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org
designates 2620:137:e000::1:20 as permitted sender)
smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=ispras.ru
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
id S237088AbjAZNge (ORCPT <rfc822;lekhanya01809@gmail.com>
+ 99 others); Thu, 26 Jan 2023 08:36:34 -0500
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:48026 "EHLO
lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
with ESMTP id S235465AbjAZNga (ORCPT
<rfc822;linux-kernel@vger.kernel.org>);
Thu, 26 Jan 2023 08:36:30 -0500
Received: from mail.ispras.ru (mail.ispras.ru [83.149.199.84])
by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 9C9251739;
Thu, 26 Jan 2023 05:36:29 -0800 (PST)
Received: from fedcomp.intra.ispras.ru (unknown [46.242.14.200])
by mail.ispras.ru (Postfix) with ESMTPSA id 503B740D403D;
Thu, 26 Jan 2023 13:36:25 +0000 (UTC)
DKIM-Filter: OpenDKIM Filter v2.11.0 mail.ispras.ru 503B740D403D
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ispras.ru;
s=default; t=1674740185;
bh=0b43UeQLqG/CbFnOsMwNF1eMzXNA9GcQsvNOir8rjrQ=;
h=From:To:Cc:Subject:Date:From;
b=hXpJvfU9DuJrhnOG9b4M9+BSbCzhZMXVr4Lt4Dp+DURGkHi6SOSPFWLz+LSQLuqw9
66kKeuiPs8pM1zVpTDNtulWfDorF1E07OGIoAGXfgSzMflxgidrQ+gEuiP2mdAaUfb
lYFRmExq3nKQqx+gN5pmr38Nj7omkcjUwFuG2XUk=
From: Fedor Pchelkin <pchelkin@ispras.ru>
To: stable@vger.kernel.org,
Greg Kroah-Hartman <gregkh@linuxfoundation.org>
Cc: Fedor Pchelkin <pchelkin@ispras.ru>,
Archie Pusaka <apusaka@chromium.org>,
Abhishek Pandit-Subedi <abhishekpandit@google.com>,
Marcel Holtmann <marcel@holtmann.org>,
Johan Hedberg <johan.hedberg@gmail.com>,
Luiz Augusto von Dentz <luiz.dentz@gmail.com>,
"David S. Miller" <davem@davemloft.net>,
Jakub Kicinski <kuba@kernel.org>,
linux-bluetooth@vger.kernel.org, netdev@vger.kernel.org,
linux-kernel@vger.kernel.org,
Alexey Khoroshilov <khoroshilov@ispras.ru>,
lvc-project@linuxtesting.org
Subject: [PATCH 6.1 0/1] Bluetooth: hci_sync: cancel cmd_timer if hci_open
failed
Date: Thu, 26 Jan 2023 16:36:12 +0300
Message-Id: <20230126133613.815127-1-pchelkin@ispras.ru>
X-Mailer: git-send-email 2.34.1
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
X-Spam-Status: No, score=-2.1 required=5.0 tests=BAYES_00,DKIM_SIGNED,
DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,SPF_HELO_NONE,SPF_PASS
autolearn=ham autolearn_force=no version=3.4.6
X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on
lindbergh.monkeyblade.net
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org
X-getmail-retrieved-from-mailbox: =?utf-8?q?INBOX?=
X-GMAIL-THRID: =?utf-8?q?1756092944850223913?=
X-GMAIL-MSGID: =?utf-8?q?1756092944850223913?=
|
| Series |
Bluetooth: hci_sync: cancel cmd_timer if hci_open failed
|
|
Message
Fedor Pchelkin
Jan. 26, 2023, 1:36 p.m. UTC
Syzkaller reports use-after-free in hci_cmd_timeout(). The bug was fixed in the following patch and can be cleanly applied to 6.1 stable tree. Due to some technical rearrangement, the fix for older stable branches requires a different patch which I'll send you in another thread.
Comments
On Thu, Jan 26, 2023 at 04:36:12PM +0300, Fedor Pchelkin wrote: >Syzkaller reports use-after-free in hci_cmd_timeout(). The bug was fixed >in the following patch and can be cleanly applied to 6.1 stable tree. > >Due to some technical rearrangement, the fix for older stable branches >requires a different patch which I'll send you in another thread. Queued up, thanks!