CVE-2022-48674

erofs: fix pcluster use-after-free on UP platforms

References

https://cve.org/CVERecord/?id=CVE-2022-48674

Notes

 carnil> Introduced in 73f5c66df3e2 ("staging: erofs: fix
 carnil> `erofs_workgroup_{try_to_freeze, unfreeze}'"). Vulnerable versions: 4.19.26
 carnil> 4.20.13 5.0-rc1.

Bugs

Status

Branch	Status
4.19-buster-security	needed
4.19-upstream-stable	needed
5.10-bullseye-security	needed
5.10-upstream-stable	needed
6.1-bookworm-security	N/A "Fixed before branching point"
6.1-upstream-stable	N/A "Fixed before branching point"
6.6-upstream-stable	N/A "Fixed before branching point"
6.8-upstream-stable	N/A "Fixed before branching point"
sid	released (5.19.11-1)
upstream	released (6.0-rc5) [2f44013e39984c127c6efedf70e6b5f4e9dcf315]