In the Linux kernel, the following vulnerability has been resolved:
fs/aio: Check IOCB_AIO_RW before the struct aio_kiocb conversion
The first kiocb_set_cancel_fn() argument may point at a struct kiocb
that is not embedded inside struct aio_kiocb. With the current code,
depending on the compiler, the req->ki_ctx read happens either before
the IOCB_AIO_RW test or after that test. Move the req->ki_ctx read such
that it is guaranteed that the IOCB_AIO_RW test happens first.
Metrics
Affected Vendors & Products
References
History
No history.

Status: PUBLISHED
Assigner: Linux
Published: 2024-05-17T13:23:20.326Z
Updated: 2024-12-19T08:55:40.560Z
Reserved: 2024-05-17T12:19:12.343Z
Link: CVE-2024-35815

Updated: 2024-08-02T03:21:47.505Z

Status : Awaiting Analysis
Published: 2024-05-17T14:15:16.077
Modified: 2024-11-21T09:20:57.590
Link: CVE-2024-35815
