CVE-2024-26898

aoe: fix the potential use-after-free problem in aoecmd_cfg_pkts

References

Notes

 carnil> Introduced in 7562f876cd93 ("[NET]: Rework dev_base via list_head (v3)").
 carnil> Vulnerable versions: 2.6.22-rc1.

Bugs

Status

Branch Status
4.19-buster-security needed
4.19-upstream-stable released (4.19.311) [ad80c34944d7175fa1f5c7a55066020002921a99]
5.10-bullseye-security released (5.10.216-1)
5.10-upstream-stable released (5.10.214) [faf0b4c5e00bb680e8e43ac936df24d3f48c8e65]
6.1-bookworm-security released (6.1.85-1)
6.1-upstream-stable released (6.1.83) [74ca3ef68d2f449bc848c0a814cefc487bf755fa]
6.6-upstream-stable released (6.6.23) [eb48680b0255a9e8a9bdc93d6a55b11c31262e62]
6.8-upstream-stable released (6.8.2) [a16fbb80064634b254520a46395e36b87ca4731e]
sid released (6.7.12-1)
upstream released (6.9-rc1) [f98364e926626c678fb4b9004b75cacf92ff0662]