summary refs log tree commit diff stats
path: root/gitlab/issues_text/target_missing/host_missing/accel_missing/2528
diff options
context:
space:
mode:
Diffstat (limited to 'gitlab/issues_text/target_missing/host_missing/accel_missing/2528')
-rw-r--r--gitlab/issues_text/target_missing/host_missing/accel_missing/25289
1 files changed, 9 insertions, 0 deletions
diff --git a/gitlab/issues_text/target_missing/host_missing/accel_missing/2528 b/gitlab/issues_text/target_missing/host_missing/accel_missing/2528
new file mode 100644
index 000000000..a3295ce56
--- /dev/null
+++ b/gitlab/issues_text/target_missing/host_missing/accel_missing/2528
@@ -0,0 +1,9 @@
+nbd: CVE-2024-7409 fix is incomplete
+Description of problem:
+Patch will hit list soon, but opening issue here since if this misses 9.1, we would need to allocate a second CVE for having an incomplete fix (a remaining use-after-free) in the code originally proposed for CVE-2024-7409.
+Steps to reproduce:
+1. stress test of attempting repeated 'qemu-nbd --list' in parallel with repeated 'nbd-server-start/nbd-server-stop' loops in a qemu process revealed a use-after-free SEGV of nbd_server->listener
+2.
+3.
+Additional information:
+