Skip to content
Snippets Groups Projects
Select Git revision
  • seco_lf-6.6.23-2.0.0_trizeps8plus-dev
  • integrate/gitlab-ci/enhance-gitlab-logging-methods/into/seco_lf-5.10.y
  • integrate/gitlab-ci/cleaos-660-known-issues-in-release-pipeline/into/seco_lf-5.10.y
  • integrate/gitlab-ci/cleaos-693-release-documents-from-jira-ticket/into/seco_lf-5.10.y
  • seco_lf-5.10.y-mx8m_sscg
  • integrate/gitlab-ci/yt-379-cleaos-release-page-on-secone-techresources-confluence/into/seco_lf-5.10.y
  • seco_lf-5.10.y default protected
  • integrate/gitlab-ci/SW-1821-goals-2024-cybersecurity-reports-in-edgehog/into/seco_lf-5.10.y
  • seco_lf-6.6.23-2.0.0_e88-dev
  • niccolor/f03-porting
  • jonas/Draft-eeprom-nvmem-driver-stub
  • tkah/e83_test_ext_eeprom
  • seco_lf-6.6.23-2.0.0_e39-e77-dev
  • oleksii/myon2_next
  • oleksii/adc081c-add-support-of-IIO-events-on-ALERT-pin
  • integrate/gitlab-ci/test-after-token-rotation-and-blocked-gitbot-user/into/seco_lf-5.10.y
  • integrate/gitlab-ci/test-after-token-rotation/into/seco_lf-5.10.y
  • seco_lf-6.6.23-2.0.0
  • integrate/gitlab-ci/cleaos-492-manage-machines-and-distros-for-custom-projects/into/seco_lf-5.10.y
  • integrate/gitlab-ci/test-gitlab-service-account/into/seco_lf-5.10.y
  • lf-6.1.55-2.2.1
  • lf-6.6.3-1.0.0
  • lf-6.6.3-imx95-er2
  • lf-6.1.55-2.2.0
  • lf-6.6.y-imx95-er1
  • lf-5.15.71-2.2.2
  • lf-6.1.36-2.1.0
  • lf-5.15.71-2.2.1
  • lf-6.1.22-2.0.0
  • lf-6.1.1-1.0.1
  • rel_imx_5.4.24_2.1.4
  • rel_imx_4.9.88_2.0.13
  • rel_imx_4.14.98_2.3.5
  • lf-6.1.1-1.0.0
  • rel_imx_5.4.3_2.0.2
  • lf-5.15.71-2.2.0
  • lf-5.10.72-2.2.3
  • lf-5.15.52-2.1.0
  • imx_5.15.52_imx8ulp_er1
  • lf-5.10.72-2.2.2
40 results
Compare History
user avatar
target: Fix NULL pointer dereference for XCOPY in target_put_sess_cmd
Nicholas Bellinger authored 
This patch fixes a NULL pointer dereference regression bug that was
introduced with:

commit 1e1110c4
Author: Mikulas Patocka <mpatocka@redhat.com>
Date:   Sat May 17 06:49:22 2014 -0400

    target: fix memory leak on XCOPY

Now that target_put_sess_cmd() -> kref_put_spinlock_irqsave() is
called with a valid se_cmd->cmd_kref, a NULL pointer dereference
is triggered because the XCOPY passthrough commands don't have
an associated se_session pointer.

To address this bug, go ahead and checking for a NULL se_sess pointer
within target_put_sess_cmd(), and call se_cmd->se_tfo->release_cmd()
to release the XCOPY's xcopy_pt_cmd memory.

Reported-by: default avatarThomas Glanzmann <thomas@glanzmann.de>
Cc: Thomas Glanzmann <thomas@glanzmann.de>
Cc: Mikulas Patocka <mpatocka@redhat.com>
Cc: stable@vger.kernel.org # 3.12+
Signed-off-by: default avatarNicholas Bellinger <nab@linux-iscsi.org>
0ed6e189
Name Last commit Last update