Bluetooth: hci_ldisc: check HCI_UART_PROTO_READY flag in HCIUARTGETPROTO (!3145) · Merge requests · Red Hat / centos-stream / src / kernel / centos-stream-9 · GitLab

The 17.0 major release is coming on May 16, 2024! This version brings many exciting improvements to GitLab, but also removes some deprecated features. We are introducing three breaking change windows during which we expect breaking changes to be deployed to GitLab.com. You can read more about it on our blogpost . The second breaking change window begins 2024-04-29 09:00 UTC and ends 2024-05-01 22:00 UTC.

José Ignacio Tornos Martínez requested to merge jtornosm/centos-stream-9:j6358-cve-hciuart into main Sep 28, 2023

JIRA: https://issues.redhat.com/browse/RHEL-6358

Fix the race condition in hci_uart_tty_ioctl() between HCIUARTSETPROTO and HCIUARTGETPROTO.

Tested: public reproducer has been used to verify that the crash is not happening with the fix.

CVE: CVE-2023-31083

Signed-off-by: Jose Ignacio Tornos Martinez jtornosm@redhat.com

Edited Sep 29, 2023 by José Ignacio Tornos Martínez