CVE-2023-52493

bus: mhi: host: Drop chan lock before queuing buffers

References

Notes

 carnil> Introduced in 1d3173a3bae7 ("bus: mhi: core: Add support for processing events
 carnil> from client device"). Vulnerable versions: 5.7-rc1.

Bugs

Status

Branch Status
4.19-buster-security N/A "Vulnerable code not present"
4.19-upstream-stable N/A "Vulnerable code not present"
5.10-bullseye-security released (5.10.216-1)
5.10-upstream-stable released (5.10.210) [20a6dea2d1c68d4e03c6bb50bc12e72e226b5c0e]
6.1-bookworm-security released (6.1.76-1)
6.1-upstream-stable released (6.1.76) [3c5ec66b4b3f6816f3a6161538672e389e537690]
6.6-upstream-stable released (6.6.15) [eaefb9464031215d63c0a8a7e2bfaa00736aa17e]
6.8-upstream-stable N/A "Fixed before branching point"
sid released (6.6.15-1)
upstream released (6.8-rc1) [01bd694ac2f682fb8017e16148b928482bc8fa4b]