Re: Use-after-free in ppoll

From: Rainer Weikusat
Date: Sun Nov 22 2015 - 13:52:09 EST

Next message: Andy Shevchenko: "Re: [PATCH 1/3] linux/bitmap: Move 2 mask macro to bitops.h"
Previous message: Greg KH: "[GIT PULL] Staging driver fixes for 4.4-rc2"
In reply to: Rainer Weikusat: "Re: Use-after-free in ppoll"
Next in thread: Dmitry Vyukov: "Re: Use-after-free in ppoll"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Rainer Weikusat <rweikusat@xxxxxxxxxxxxxxxxxxxxxxx> writes:

[...]

> because of the close, this routine will be called with the peer_wait
> wait_queue_head of the non-closed socket of the socket pair as
> wait_address argument.

This should have been "peer_wait wait_queue_head of the peer of the
non-closed socket, ie, that of the closed socket"...
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Andy Shevchenko: "Re: [PATCH 1/3] linux/bitmap: Move 2 mask macro to bitops.h"
Previous message: Greg KH: "[GIT PULL] Staging driver fixes for 4.4-rc2"
In reply to: Rainer Weikusat: "Re: Use-after-free in ppoll"
Next in thread: Dmitry Vyukov: "Re: Use-after-free in ppoll"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]