In the Linux kernel, the following vulnerability has been resolved: fs/aio: Check IOCB_AIO_RW before the struct aio_kiocb conversion The first kiocb_set_cancel_fn() argument may point at a struct kiocb that is not embedded inside struct aio_kiocb. With the current code, depending on the compiler, the req->ki_ctx read happens either before the IOCB_AIO_RW test or after that test. Move the req->ki_ctx read such that it is guaranteed that the IOCB_AIO_RW test happens first.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2024-05-17T13:23:20.326Z

Updated: 2024-12-19T08:55:40.560Z

Reserved: 2024-05-17T12:19:12.343Z

Link: CVE-2024-35815

cve-icon Vulnrichment

Updated: 2024-08-02T03:21:47.505Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-05-17T14:15:16.077

Modified: 2024-11-21T09:20:57.590

Link: CVE-2024-35815

cve-icon Redhat

Severity : Moderate

Publid Date: 2024-05-17T00:00:00Z

Links: CVE-2024-35815 - Bugzilla