CVE-2023-52447

bpf: Defer the free of inner map when necessary

References

Notes

 carnil> Introduced in bba1dc0b55ac ("bpf: Remove redundant synchronize_rcu.")
 carnil> 638e4b825d52 ("bpf: Allows per-cpu maps and map-in-map in sleepable programs").
 carnil> Vulnerable versions: 5.9-rc1 5.12-rc1.

Bugs

Status

Branch Status
4.19-buster-security N/A "Vulnerable code not present"
4.19-upstream-stable N/A "Vulnerable code not present"
5.10-bullseye-security released (5.10.216-1)
5.10-upstream-stable released (5.10.214) [90c445799fd1dc214d7c6279c144e33a35e29ef2]
6.1-bookworm-security released (6.1.76-1)
6.1-upstream-stable released (6.1.75) [62fca83303d608ad4fec3f7428c8685680bb01b0]
6.6-upstream-stable released (6.6.14) [f91cd728b10c51f6d4a39957ccd56d1e802fc8ee]
6.8-upstream-stable N/A "Fixed before branching point"
sid released (6.6.15-1)
upstream released (6.8-rc1) [876673364161da50eed6b472d746ef88242b2368]