network: 0.940
device: 0.797
graphic: 0.597
debug: 0.518
vnc: 0.402
performance: 0.355
socket: 0.327
files: 0.322
semantic: 0.311
boot: 0.309
risc-v: 0.269
ppc: 0.227
i386: 0.199
register: 0.198
x86: 0.181
kernel: 0.149
hypervisor: 0.139
arm: 0.130
PID: 0.122
VMM: 0.099
TCG: 0.093
user-level: 0.076
KVM: 0.059
virtual: 0.047
architecture: 0.046
assembly: 0.044
mistranslation: 0.038
peripherals: 0.034
permissions: 0.014

nbd: CVE-2024-7409 fix is incomplete
Description of problem:
Patch will hit list soon, but opening issue here since if this misses 9.1, we would need to allocate a second CVE for having an incomplete fix (a remaining use-after-free) in the code originally proposed for CVE-2024-7409.
Steps to reproduce:
1. stress test of attempting repeated 'qemu-nbd --list' in parallel with repeated 'nbd-server-start/nbd-server-stop' loops in a qemu process revealed a use-after-free SEGV of nbd_server->listener
2.
3.
Additional information: