References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to [email protected].

Change History

In the Linux kernel, the following vulnerability has been resolved:

drm/i915: fix race condition UAF in i915_perf_add_config_ioctl

Userspace can guess the id value and try to race oa_config object creation
with config remove, resulting in a use-after-free if we dereference the
object after unlocking the metrics_lock.  For that reason, unlocking the
metrics_lock must be done after we are done dereferencing the object.

[tursulin: Manually added stable tag.]
(cherry picked from commit 49f6f6483b652108bcb73accd0204a464b922395)

https://git.kernel.org/stable/c/240b1502708858b5e3f10b6dc5ca3f148a322fef

https://git.kernel.org/stable/c/6eeb1cba4c9dc47656ea328afa34953c28783d8c

https://git.kernel.org/stable/c/7eb98f5ac551863efe8be810cea1cd5411d677b1

https://git.kernel.org/stable/c/dc30c011469165d57af9adac5baff7d767d20e5c