Описание
In the Linux kernel, the following vulnerability has been resolved:
io_uring: fix io_queue_proc modifying req->flags
With multiple poll entries __io_queue_proc() might be running in parallel with poll handlers and possibly task_work, we should not be carelessly modifying req->flags there. io_poll_double_prepare() handles a similar case with locking but it's much easier to move it into __io_arm_poll_handler().
In the Linux kernel, the following vulnerability has been resolved:
io_uring: fix io_queue_proc modifying req->flags
With multiple poll entries __io_queue_proc() might be running in parallel with poll handlers and possibly task_work, we should not be carelessly modifying req->flags there. io_poll_double_prepare() handles a similar case with locking but it's much easier to move it into __io_arm_poll_handler().
CVE ID
Связанные уязвимости
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
A vulnerability was found in the io_queue_proc function in the Linux kernel's io_uring subsystem, which is responsible for handling asynchronous I/O operations. This issue arises from improper modification of req->flags within io_queue_proc, which can lead to unintended behavior or corruption of request flags, impacting the stability and security of the system.
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.