CVE-2022-49811

Summary

In the Linux kernel, the following vulnerability has been resolved:

drbd: use after free in drbd_create_device()

The drbd_destroy_connection() frees the "connection" so use the _safe() iterator to prevent a use after free.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxb6f85ef9538b2111a8ba0bbfae9aaebabfc94961 < fc1897f16ebcfd22364f2afcc27f53a740f3bc7aaffected
LinuxLinuxb6f85ef9538b2111a8ba0bbfae9aaebabfc94961 < bf47ca1b35fc1f55091ffaff5fbe41ea0c6f59a1affected
LinuxLinuxb6f85ef9538b2111a8ba0bbfae9aaebabfc94961 < 813a8dd9c45fd46f5cbbfbedf0791afa7740ccf5affected
LinuxLinuxb6f85ef9538b2111a8ba0bbfae9aaebabfc94961 < 9ed51414aef6e59e832e2960f10766dce2d5b1a1affected
LinuxLinuxb6f85ef9538b2111a8ba0bbfae9aaebabfc94961 < 7d93417d596402ddd46bd76c721f205d09d0d025affected
LinuxLinuxb6f85ef9538b2111a8ba0bbfae9aaebabfc94961 < c2a00b149836d60c222930bbea6b2139caf34d4faffected
LinuxLinuxb6f85ef9538b2111a8ba0bbfae9aaebabfc94961 < a7a1598189228b5007369a9622ccdf587be0730faffected
LinuxLinux3.15affected
LinuxLinux0 < 3.15unaffected
LinuxLinux4.14.300 <= 4.14.*unaffected
LinuxLinux4.19.267 <= 4.19.*unaffected
LinuxLinux5.4.225 <= 5.4.*unaffected
LinuxLinux5.10.156 <= 5.10.*unaffected
LinuxLinux5.15.80 <= 5.15.*unaffected
LinuxLinux6.0.10 <= 6.0.*unaffected
LinuxLinux6.1 <= *unaffected

Weaknesses

References