CVE-2023-52629
sh: push-switch: Reorder cleanup operations to avoid use-after-free bug
References
Notes
carnil> Introduced in 9f5e8eee5cfe ("sh: generic push-switch framework."). Vulnerable
carnil> versions: 2.6.20-rc1.
Bugs
Status
| Branch |
Status |
| upstream |
released (6.6-rc1) [246f80a0b17f8f582b2c0996db02998239057c65]
|
| 6.18-upstream-stable |
N/A "Fixed before branching point"
|
| 6.17-upstream-stable |
N/A "Fixed before branching point"
|
| 6.12-upstream-stable |
N/A "Fixed before branching point"
|
| 6.7-upstream-stable |
N/A "Fixed before branching point"
|
| 6.6-upstream-stable |
N/A "Fixed before branching point"
|
| 6.1-upstream-stable |
needed
|
| 5.10-upstream-stable |
needed
|
| sid |
released (6.5.6-1)
|
| 6.12-trixie-security |
N/A "Fixed before branching point"
|
| 6.1-bookworm-security |
needed
|
| 5.10-bullseye-security |
needed
|
