Bug 1961292 (CVE-2019-25044) - CVE-2019-25044 kernel: use-after-free in the block subsystem related to blk_mq_free_rqs and blk_cleanup_queue
Summary: CVE-2019-25044 kernel: use-after-free in the block subsystem related to blk_m...
Keywords:
Status: CLOSED NOTABUG
Alias: CVE-2019-25044
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
high
high
Target Milestone: ---
Assignee: Red Hat Product Security
QA Contact:
URL:
Whiteboard:
Depends On: 1961293
Blocks: 1961294
TreeView+ depends on / blocked
 
Reported: 2021-05-17 16:20 UTC by Guilherme de Almeida Suckevicz
Modified: 2024-10-01 18:13 UTC (History)
42 users (show)

Fixed In Version:
Clone Of:
Environment:
Last Closed: 2021-06-01 15:09:59 UTC
Embargoed:

Attachments (Terms of Use)

Description Guilherme de Almeida Suckevicz 2021-05-17 16:20:08 UTC 
The block subsystem in the Linux kernel before 5.2 has a use-after-free that can lead to arbitrary code execution in the kernel context and privilege escalation. This is related to blk_mq_free_rqs and blk_cleanup_queue.

Reference and upstream patch:
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=c3e2219216c92919a6bd1711f340f5faa98695e6
Comment 1 Guilherme de Almeida Suckevicz 2021-05-17 16:20:57 UTC 
Created kernel tracking bugs for this issue:

Affects: fedora-all [bug 1961293]
Comment 2 Justin M. Forbes 2021-05-17 20:27:58 UTC 
This was fixed for Fedora with the 5.2 stable kernel rebases.
Note You need to log in before you can comment on or make changes to this bug.