Donate to e Foundation | Murena handsets with /e/OS | Own a part of Murena! Learn more

Commit 11c6fc8b authored by Miklos Szeredi's avatar Miklos Szeredi Committed by Pradeep P V K
Browse files

fuse: fix page dereference after free 



After unlock_request() pages from the ap->pages[] array may be put (e.g. by
aborting the connection) and the pages can be freed.

Prevent use after free by grabbing a reference to the page before calling
unlock_request().

The original patch was created by Pradeep P V K.

Change-Id: I895fe861028b40a1930b9600436ef6d34c02d7c3
Reported-by: default avatarPradeep P V K <ppvk@codeaurora.org>
Cc: <stable@vger.kernel.org>
Signed-off-by: default avatarMiklos Szeredi <mszeredi@redhat.com>
Patch-mainline: linux-fsdevel@vger.kernel.org @ 14/09/2020, 13:41
Signed-off-by: default avatarPradeep P V K <ppvk@codeaurora.org>
parent 5de2f678
Show whitespace changes
Inline Side-by-side
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment