[patch 05/47] double-free of inode on alloc_file() failure exit increate_write_pipe()

From: Greg KH
Date: Fri Jun 13 2008 - 20:13:49 EST

Next message: Greg KH: "[patch 06/47] ALSA: hda - Fix resume of auto-config mode withRealtek codecs"
Previous message: Greg KH: "[patch 04/47] ssb: Fix context assertion inssb_pcicore_dev_irqvecs_enable"
In reply to: Greg KH: "[patch 04/47] ssb: Fix context assertion inssb_pcicore_dev_irqvecs_enable"
Next in thread: Greg KH: "[patch 06/47] ALSA: hda - Fix resume of auto-config mode withRealtek codecs"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

-stable review patch. If anyone has any objections, please let us know.

------------------
From: Al Viro <viro@xxxxxxxxxxxxxxxxxx>

upstream commit: ed1524371716466e9c762808b02601d0d0276a92

Duh... Fortunately, the bug is quite recent (post-2.6.25) and, embarrassingly,
mine ;-/

http://bugzilla.kernel.org/show_bug.cgi?id=10878

Signed-off-by: Al Viro <viro@xxxxxxxxxxxxxxxxxx>
Signed-off-by: Chris Wright <chrisw@xxxxxxxxxxxx>
---
fs/pipe.c | 3 +++
1 file changed, 3 insertions(+)

--- a/fs/pipe.c
+++ b/fs/pipe.c
@@ -988,7 +988,10 @@ struct file *create_write_pipe(void)
return f;

err_dentry:
+ free_pipe_info(inode);
dput(dentry);
+ return ERR_PTR(err);
+
err_inode:
free_pipe_info(inode);
iput(inode);

--
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Greg KH: "[patch 06/47] ALSA: hda - Fix resume of auto-config mode withRealtek codecs"
Previous message: Greg KH: "[patch 04/47] ssb: Fix context assertion inssb_pcicore_dev_irqvecs_enable"
In reply to: Greg KH: "[patch 04/47] ssb: Fix context assertion inssb_pcicore_dev_irqvecs_enable"
Next in thread: Greg KH: "[patch 06/47] ALSA: hda - Fix resume of auto-config mode withRealtek codecs"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]