spi: lpspi: Avoid potential use-after-free in probe() (!4648) · Merge requests · Red Hat / centos-stream / src / kernel / centos-stream-9

Andrew Halaney requested to merge ahalaney/centos-stream-9:rhel-33234 into main Jul 03, 2024

JIRA: https://issues.redhat.com/browse/RHEL-33234 CVE: CVE-2024-26866 Omitted-fix: 6c6871cdaef9 ("spi: Merge spi_controller.{slave,target}_abort()") This fix would be nice to have, but isn't necessary at the moment, as RHEL doesn't enable CONFIG_SPI_SLAVE and therefore this fix would have no runtime effect.

Signed-off-by: Andrew Halaney ahalaney@redhat.com

Edited Jul 08, 2024 by Andrew Halaney

spi: lpspi: Avoid potential use-after-free in probe()

Merge request reports