Re: [PATCH] tun: fix use-after-free when register netdev failed

On 2019/8/15 17:21, Jason Wang wrote: On 2019/8/15 下午4:18, Yang Yingliang wrote: I got a UAF repport in tun driver when doing fuzzy test: [ 466.269490] == [ 466.271792] BUG: KASAN: use-after-free in tun_chr_read_iter+0x2ca/

Re: [PATCH] tun: fix use-after-free when register netdev failed

On 2019/8/15 17:35, Eric Dumazet wrote: On 8/15/19 10:18 AM, Yang Yingliang wrote: I got a UAF repport in tun driver when doing fuzzy test: [ 466.368604] page:ea000dc84e00 refcount:1 mapcount:0 mapping:8883df1b4f00 index:0x0 compound_mapcount: 0 [ 466.371582] flags: 0x2f8001

Re: [PATCH] tun: fix use-after-free when register netdev failed

On 8/15/19 10:18 AM, Yang Yingliang wrote: > I got a UAF repport in tun driver when doing fuzzy test: > > > [ 466.368604] page:ea000dc84e00 refcount:1 mapcount:0 > mapping:8883df1b4f00 index:0x0 compound_mapcount: 0 > [ 466.371582] flags: 0x2f80010200(slab|head) > [ 466.372910]

Re: [PATCH] tun: fix use-after-free when register netdev failed

On 2019/8/15 下午4:18, Yang Yingliang wrote: I got a UAF repport in tun driver when doing fuzzy test: [ 466.269490] == [ 466.271792] BUG: KASAN: use-after-free in tun_chr_read_iter+0x2ca/0x2d0 [ 466.271806] Read of size 8 at add

[PATCH] tun: fix use-after-free when register netdev failed

I got a UAF repport in tun driver when doing fuzzy test: [ 466.269490] == [ 466.271792] BUG: KASAN: use-after-free in tun_chr_read_iter+0x2ca/0x2d0 [ 466.271806] Read of size 8 at addr 888372139250 by task tun-test/2699 [ 466